ГлавнаяУязвимости → CVE-2025-10108
7.3высокая

CVE-2025-10108

Описание

A vulnerability was found in Campcodes Online Loan Management System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_loan. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been made public and could be used.

Затрагиваемое ПО
Campcodes Online loan management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/dico-Z/CVE/issues/4https://vuldb.com/?ctiid.323074https://vuldb.com/?id.323074https://vuldb.com/?submit.645378https://www.campcodes.com/https://github.com/dico-Z/CVE/issues/4