CVE-2025-9678 – Campcodes Online Loan Management System SQL Injection Vulnerability

August 29, 2025

CVE ID : CVE-2025-9678

Published : Aug. 29, 2025, 10:15 p.m. | 3 hours, 12 minutes ago

Description : A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=delete_borrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-58159 – WeGIA Web Manager Remote Code Execution Vulnerability

Next Article CVE-2025-58160 – Tracing-Subscriber ANSI Escape Sequence Injection

Highlights

CVE-2025-6285 – PHPGurukul COVID19 Testing Management System PHP Cross-Site Scripting Vulnerability

June 19, 2025

CVE ID : CVE-2025-6285

Published : June 19, 2025, 11:15 p.m. | 3 hours, 25 minutes ago

Description : A vulnerability was found in PHPGurukul COVID19 Testing Management System 2021. It has been rated as problematic. This issue affects some unknown processing of the file /search-report-result.php. The manipulation of the argument q leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Best React.js Development Services in 2025: Features, Benefits & What to Look For

August 2025: AI updates from the past month

This 3-in-1 charger has a retractable superpower that’s a must for travel

How a legacy hardware company reinvented itself in the AI age

The 13+ best Walmart Labor Day deals 2025: Sales on Apple, Samsung, LG, and more

You can save up to $700 on my favorite Bluetti power stations for Labor Day

Call for Speakers – JS Conf Armenia 2025

Call for Speakers – JS Conf Armenia 2025

Streamlining Application Automation with Laravel’s Task Scheduler

A Fluent Path Builder for PHP and Laravel

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

My Family Cinema not Working? 12 Quick Fixes

Super-linter – collection of linters and code analyzers

CVE-2025-9678 – Campcodes Online Loan Management System SQL Injection Vulnerability

WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

I changed 10 settings on my Fire TV for better performance and fewer distractions

New DOGE Big Balls Ransomware Using Open-Source Tools & Custom Scripts to Infect Victim Machines

CVE-2025-5990 – Crafty Controller Stored XSS Vulnerability

CVE-2025-47884 – Jenkins OpenID Connect Provider Plugin Authentication Bypass

CVE-2025-6285 – PHPGurukul COVID19 Testing Management System PHP Cross-Site Scripting Vulnerability

CVE-2025-29743 – D-Link DIR-816 Command Injection Vulnerability

Minimal CSS-only blurry image placeholders

GuardianGamer scales family-safe cloud gaming with AWS

CVE-2025-9678 – Campcodes Online Loan Management System SQL Injection Vulnerability

Related Posts