CVE-2025-7838 – Campcodes Online Movie Theater Seat Reservation System SQL Injection Vulnerability

July 19, 2025

CVE ID : CVE-2025-7838

Published : July 19, 2025, 6:15 p.m. | 5 hours, 38 minutes ago

Description : A vulnerability has been found in Campcodes Online Movie Theater Seat Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/manage_seat.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7840 – Campcodes Online Movie Theater Seat Reservation System Cross-Site Scripting Vulnerability

Next Article CVE-2025-7837 – TOTOLINK T6 MQTT Service Buffer Overflow Vulnerability

Highlights

CVE-2024-12225 – Quarkus WebAuthn Default Endpoints Information Disclosure and Authentication Bypass

May 6, 2025

CVE ID : CVE-2024-12225

Published : May 6, 2025, 8:15 p.m. | 2 hours ago

Description : A vulnerability was found in Quarkus in the quarkus-security-webauthn module. The Quarkus WebAuthn module publishes default REST endpoints for registering and logging users in while allowing developers to provide custom REST endpoints. When developers provide custom REST endpoints, the default endpoints remain accessible, potentially allowing attackers to obtain a login cookie that has no corresponding user in the Quarkus application or, depending on how the application is written, could correspond to an existing user that has no relation with the current attacker, allowing anyone to log in as an existing user by just knowing that user’s user name.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

DistroWatch Weekly, Issue 1131

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

WhatsApp for Windows 11 is switching back to Chromium web wrapper from UWP/native

DistroWatch Weekly, Issue 1131

CVE-2025-7838 – Campcodes Online Movie Theater Seat Reservation System SQL Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Microsoft Secures MSA Signing with Azure Confidential VMs Following Storm-0558 Breach

Build Adobe Express Add-Ons and Get Funded

CVE-2025-25179 – Citrix XenServer GPU Escalation of Privilege

Rilasciata NixOS 25.05 “Warbler”

CVE-2024-12225 – Quarkus WebAuthn Default Endpoints Information Disclosure and Authentication Bypass

CVE-2025-49791 – Apache HTTP Server Denial of Service

Calibre 8.6.0 Delivers Dramatic Database Speed Boost

Microsoft says Edge 134 is the fastest version of the browser ever

CVE-2025-7838 – Campcodes Online Movie Theater Seat Reservation System SQL Injection Vulnerability

Related Posts