CNNVD-202506-2629 Information

CNNVD ID

CNNVD-202506-2629

Related CVE

CVE-2025-6312

• CNNVD Published: 2025-06-20

Description (Chinese)

CampCodes Sales and Inventory System是CampCodes公司的一个销售和库存系统。 CampCodes Sales and Inventory System 1.0版本存在注入漏洞，该漏洞源于文件/pages/cash_transaction.php中参数cid处理不当导致SQL注入，可能导致远程攻击。

Description (English)

CampCodes Sales and Information Systems is a sales and inventory system of CampCodes. There is an injection loophole in version 1.0 of CampCodes Sales and Inventory System, which stems from the mishandling of the parameters cid in the document/pages/cash transaction.php, which led to the injection of SQL, which could lead to a long-range attack.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

CampCodes

Published

2025-06-20

Last Modified

2026-02-24

References

https://github.com/dragonghost2025/cve/issues/3 https://vuldb.com/?ctiid.313312 https://vuldb.com/?id.313312 https://vuldb.com/?submit.595930 https://www.campcodes.com/