CVE-2025-4490 – Campcodes Online Food Ordering System SQL Injection Vulnerability

May 9, 2025

CVE ID : CVE-2025-4490

Published : May 9, 2025, 9:15 p.m. | 3 hours, 3 minutes ago

Description : A vulnerability classified as critical has been found in Campcodes Online Food Ordering System 1.0. This affects an unknown part of the file /view-ticket-admin.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4491 – Campcodes Online Food Ordering System SQL Injection Vulnerability

Next Article CVE-2025-4489 – Campcodes Online Food Ordering System SQL Injection

Highlights

CVE-2025-53096 – Moonlight Sunshine Clickjacking Vulnerability

July 1, 2025

CVE ID : CVE-2025-53096

Published : July 1, 2025, 2:15 a.m. | 5 hours, 18 minutes ago

Description : Sunshine is a self-hosted game stream host for Moonlight. Prior to version 2025.628.4510, the web UI of Sunshine lacks protection against Clickjacking attacks. This vulnerability allows an attacker to embed the Sunshine interface within a malicious website using an invisible or disguised iframe. If a user is tricked into interacting (one or multiple clicks) with the malicious page while authenticated, they may unknowingly perform actions within the Sunshine application without their consent. This issue has been patched in version 2025.628.4510.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-4490 – Campcodes Online Food Ordering System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Madonna thinks her computer was hacked

Koivisto is a strong chess engine

Best Free and Open Source Alternatives to Autodesk FBX Review

CVE-2025-49709 – Mozilla Firefox Canvas Memory Corruption Vulnerability

CVE-2025-53096 – Moonlight Sunshine Clickjacking Vulnerability

CVE-2025-6883 – Code-Projects Staff Audit System SQL Injection

CVE-2024-55569 – Samsung Exynos Out-of-Bounds Write Vulnerability

CVE-2025-6567 – Campcodes Online Recruitment Management System SQL Injection

CVE-2025-4490 – Campcodes Online Food Ordering System SQL Injection Vulnerability

Related Posts