ГлавнаяУязвимости → CVE-2025-14514
7.3высокая

CVE-2025-14514

Описание

A flaw has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file /admin/add_distributor.php. This manipulation of the argument txtDistributorAddress causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.

Затрагиваемое ПО
Campcodes Supplier management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/ProgramShowMaker/CVE/issues/4https://github.com/ProgramShowMaker/CVE/issues/5https://vuldb.com/?ctiid.335852https://vuldb.com/?id.335852https://vuldb.com/?submit.702752https://vuldb.com/?submit.702760https://www.campcodes.com/