ГлавнаяУязвимости → CVE-2025-10786
7.3высокая

CVE-2025-10786

Описание

A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_user. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.

Затрагиваемое ПО
Campcodes Grocery sales and inventory system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/zzb1388/cve/issues/83https://vuldb.com/?ctiid.325142https://vuldb.com/?id.325142https://vuldb.com/?submit.653785https://www.campcodes.com/