CVE Details
Basic Information
| Title |
Campcodes Online Shopping Portal category.php sql injection |
| Type |
cve |
| Published |
2025-05-20T22:31:06.484Z |
| Last Seen |
|
CVSS Information
| Base Score |
0.0 () |
| Attack Vector |
|
| Attack Complexity |
|
| Privileges Required |
|
| User Interaction |
|
| Scope |
|
| Confidentiality Impact |
|
| Integrity Impact |
|
| Availability Impact |
|
AI Analysis
| AI Description |
A SQL injection vulnerability exists in the /admin/category.php file of Campcodes Online Shopping Portal 1.0, allowing remote attackers to execute arbitrary SQL commands via the Category parameter. The vulnerability has been publicly disclosed and may be exploited. |
| AI Severity |
High |
| Vendor |
Campcodes |
| Product |
Online Shopping Portal |
| Affected Version |
1.0 |
Additional Information
| CVE List |
|
| CWE List |
CWE-89, CWE-74 |
| Bulletin Family |
|
Description
A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/category.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: %!f(string=#) ()
View Full CVE Details
