ГлавнаяУязвимости → CVE-2025-9503
7.3высокая

CVE-2025-9503

Описание

A security vulnerability has been detected in Campcodes Online Loan Management System 1.0. Affected is an unknown function of the file /ajax.php?action=save_borrower. The manipulation of the argument lastname leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

Затрагиваемое ПО
Campcodes Online loan management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/nobugpal/cve_Vulnerability_application/issues/1https://vuldb.com/?ctiid.321486https://vuldb.com/?id.321486https://vuldb.com/?submit.635444https://www.campcodes.com/https://github.com/nobugpal/cve_Vulnerability_application/issues/1