CVE-2025-5032 – Campcodes Online Shopping Portal SQL Injection Vulnerability

May 21, 2025

CVE ID : CVE-2025-5032

Published : May 21, 2025, 5:15 p.m. | 3 hours, 26 minutes ago

Description : A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/edit-category.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2102 – HYPR Passwordless Link Following Privilege Escalation Vulnerability

Next Article CVE-2025-5031 – Ackites KillWxapkg wxapkg File Decompression Handler Resource Consumption Vulnerability

Highlights

CVE-2025-3920 – SUR-FBD CMMS Hard-Coded Credentials Disclosure

July 7, 2025

CVE ID : CVE-2025-3920

Published : July 7, 2025, 9:15 a.m. | 32 minutes ago

Description : A vulnerability was identified in SUR-FBD CMMS where hard-coded credentials were found within a compiled DLL file. These credentials correspond to a built-in administrative account of the software. An attacker with local access to the system or the application’s installation directory could extract these credentials, potentially leading to a complete compromise of the application’s administrative functions. This issue was fixed in version 2025.03.27 of the SUR-FBD CMMS software.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Last week in AI dev tools: Cloudflare blocking AI crawlers by default, Perplexity Max subscription, and more (July 7, 2025)

Infragistics Launches Ultimate 25.1 With Major Updates to App Builder, Ignite UI

Design Guidelines For Better Notifications UX

10 Top React.js Development Service Providers For Your Next Project In 2026

This massive Samsung TV is an Xbox — and it’s cheaper than a Series X in Best Buy’s anti-Prime Day sale

One of our favorite Xbox storage expansion cards just dropped below $130 — thanks to an anti-Prime Day deal that beats Amazon

Microsoft reportedly met with Romero Games just a day before pulling funding — and said absolutely nothing about what was coming

Windows 11 is set to gain big lock screen improvements this year — here’s what to expect, and when

Concrete Fiber: Strengthening the Backbone of Modern Construction

Concrete Fiber: Strengthening the Backbone of Modern Construction

State Management in React with Jotai

Turn Your Database into a Smart Chatbot with Azure OpenAI, LangChain, and ChromaDB

This massive Samsung TV is an Xbox — and it’s cheaper than a Series X in Best Buy’s anti-Prime Day sale

This massive Samsung TV is an Xbox — and it’s cheaper than a Series X in Best Buy’s anti-Prime Day sale

One of our favorite Xbox storage expansion cards just dropped below $130 — thanks to an anti-Prime Day deal that beats Amazon

Microsoft reportedly met with Romero Games just a day before pulling funding — and said absolutely nothing about what was coming

CVE-2025-5032 – Campcodes Online Shopping Portal SQL Injection Vulnerability

CVE-2025-6793 – Marvell QConvergeConsole QLogicDownloadImpl Directory Traversal Vulnerability

CVE-2025-6794 – Marvell QConvergeConsole Directory Traversal Remote Code Execution Vulnerability

How VideoAmp uses Amazon Bedrock to power their media analytics interface

CVE-2025-4537 – RuoYi-Vue Cleartext Storage of Sensitive Information in Cookie

I’m quitting Blue Prince before I go insane

Gwyddion – SPM data visualization and analysis

CVE-2025-3920 – SUR-FBD CMMS Hard-Coded Credentials Disclosure

CVE-2025-2502 – Lenovo PC Manager Privilege Escalation

Multiple SonicWall SMA 100 Vulnerabilities Let Attackers Compromise Systems

CVE-2025-37813 – Etron USB XHCI Invalid Pointer Dereference Vulnerability

CVE-2025-5032 – Campcodes Online Shopping Portal SQL Injection Vulnerability

Related Posts