Vulnerabilities in Campcodes

586 results

Vexday analysis

Com 573 CVEs catalogadas, o volume de vulnerabilidades associadas ao vendor Campcodes é expressivo, embora nenhuma delas figure atualmente no catálogo CISA KEV, situando a taxa de exploração ativa abaixo da média geral do catálogo. O tipo de falha mais recorrente é CWE-89 (injeção de SQL), o que indica padrões estruturais de desenvolvimento inseguro que tendem a facilitar comprometimento direto de bancos de dados. A CVE mais perigosa em observação no momento é CVE-2025-9744, com escore EPSS de 0,0166, uma das duas vulnerabilidades com PoC pública disponível — fator que, mesmo sem exploração ativa confirmada, eleva o risco de que isso mude em curto prazo. Equipes responsáveis por ambientes que utilizam produtos Campcodes devem priorizar a remediação de falhas de injeção e monitorar ativamente as duas entradas recentes dado o potencial de progressão.

CVE-2025-4734MEDIUMCampcodes Sales and Inventory System ci_update.php sql injectionEPSS 0.5%CVE-2025-5078MEDIUMPHPGurukul/Campcodes Online Shopping Portal subcategory.php sql injectionEPSS 0.5%CVE-2025-0581MEDIUMCampCodes School Management Software Chat History send cross site scriptingEPSS 0.4%CVE-2025-0348MEDIUMCampCodes DepEd Equipment Inventory System add_employee.php cross site scriptingEPSS 0.4%CVE-2025-5602MEDIUMCampcodes Hospital Management System registration.php sql injectionEPSS 0.4%CVE-2025-5604MEDIUMCampcodes Hospital Management System user-login.php sql injectionEPSS 0.4%CVE-2025-5603MEDIUMCampcodes Hospital Management System registration.php sql injectionEPSS 0.4%CVE-2025-6408MEDIUMCampcodes Online Hospital Management System search.php sql injectionEPSS 0.4%CVE-2024-4648LOWCampcodes Complete Web-Based School Management System student_exam_mark_update_form.php cross site scriptingEPSS 0.4%CVE-2025-4900MEDIUMCampcodes Sales and Inventory System payment.php sql injectionEPSS 0.4%CVE-2025-4899MEDIUMCampcodes Sales and Inventory System transaction_update.php sql injectionEPSS 0.4%CVE-2025-4875MEDIUMCampcodes Online Shopping Portal forgot-password.php sql injectionEPSS 0.4%CVE-2025-10031MEDIUMCampcodes Grocery Sales and Inventory System ajax.php sql injectionEPSS 0.4%CVE-2024-4652LOWCampcodes Complete Web-Based School Management System show_teacher2.php cross site scriptingEPSS 0.4%CVE-2025-11064MEDIUMCampcodes Online Learning Management System teachers.php sql injectionEPSS 0.4%CVE-2025-11062MEDIUMCampcodes Online Learning Management System save_student.php sql injectionEPSS 0.4%CVE-2025-10851MEDIUMCampcodes Gym Management System ajax.php sql injectionEPSS 0.4%CVE-2025-9505MEDIUMCampcodes Online Loan Management System ajax.php sql injectionEPSS 0.4%CVE-2025-10446MEDIUMCampcodes Computer Sales and Inventory System cust_searchfrm.php sql injectionEPSS 0.4%CVE-2023-3660LOWCampcodes Retro Cellphone Online Store add_user_modal.php cross site scriptingEPSS 0.4%

← previouspage 16 / 30next →