Filtered by vendor Campcodes
Subscribe
Total
233 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-0625 | 1 Campcodes | 1 School Management Software | 2025-03-28 | 2.1 LOW | 3.1 LOW |
| A vulnerability, which was classified as problematic, was found in CampCodes School Management Software 1.0. This affects an unknown part of the component Attachment Handler. The manipulation leads to improper control of resource identifiers. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. | |||||
| CVE-2025-1159 | 1 Campcodes | 1 School Management Software | 2025-03-28 | 4.0 MEDIUM | 3.5 LOW |
| A vulnerability was found in CampCodes School Management Software 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /academic-calendar. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | |||||
| CVE-2024-28456 | 1 Campcodes | 1 Online Marriage Registration System | 2025-03-27 | N/A | 5.4 MEDIUM |
| Cross Site Scripting vulnerability in Campcodes Online Marriage Registration System v.1.0 allows a remote attacker to execute arbitrary code via the text fields in the marriage registration request form. | |||||
| CVE-2024-33403 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/get_events.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the event_id parameter. | |||||
| CVE-2024-33404 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 8.3 HIGH |
| A SQL injection vulnerability in /model/add_student_first_payment.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the index parameter. | |||||
| CVE-2024-33405 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 8.6 HIGH |
| SQL injection vulnerability in add_friends.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the friend_index parameter. | |||||
| CVE-2024-33406 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 7.3 HIGH |
| SQL injection vulnerability in /model/delete_student_grade_subject.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the index parameter. | |||||
| CVE-2024-33407 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 5.9 MEDIUM |
| SQL injection vulnerability in /model/delete_record.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter. | |||||
| CVE-2024-33408 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/get_classroom.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter. | |||||
| CVE-2024-33409 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| SQL injection vulnerability in index.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the name parameter. | |||||
| CVE-2024-33410 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 8.1 HIGH |
| SQL injection vulnerability in /model/delete_range_grade.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter. | |||||
| CVE-2024-33411 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/get_admin_profile.php in Campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the my_index parameter. | |||||
| CVE-2024-34927 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/update_classroom.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the name parameter. | |||||
| CVE-2024-34928 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 7.3 HIGH |
| A SQL injection vulnerability in /model/update_subject_routing.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the grade parameter. | |||||
| CVE-2024-34929 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /view/find_friends.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the my_index parameter. | |||||
| CVE-2024-34930 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 5.3 MEDIUM |
| A SQL injection vulnerability in /model/all_events1.php in Campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the month parameter. | |||||
| CVE-2024-34931 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/update_subject.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the name parameter. | |||||
| CVE-2024-34932 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /model/update_exam.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the name parameter. | |||||
| CVE-2024-34933 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 6.3 MEDIUM |
| A SQL injection vulnerability in /model/update_grade.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the admission_fee parameter. | |||||
| CVE-2024-34934 | 1 Campcodes | 1 Complete Web-based School Management System | 2025-03-25 | N/A | 9.8 CRITICAL |
| A SQL injection vulnerability in /view/emarks_range_grade_update_form.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the conversation_id parameter. | |||||