ГлавнаяУязвимости → CVE-2025-13291
7.3высокая

CVE-2025-13291

Описание

A vulnerability was found in Campcodes Supplier Management System 1.0. This affects an unknown part of the file /manufacturer/confirm_order.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used.

Затрагиваемое ПО
Campcodes Supplier management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/Fex212/CVE/issues/1https://vuldb.com/?ctiid.332632https://vuldb.com/?id.332632https://vuldb.com/?submit.691620https://www.campcodes.com/