CNNVD-202509-3224 Information

Sep 22, 2025 cve

CNNVD ID

CNNVD-202509-3224

CVE-2025-10817

CNNVD Published: 2025-09-22

Description (Chinese)

CampCodes Online Learning Management System是菲律宾CampCodes公司的一个在线学习管理系统。 CampCodes Online Learning Management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/admin/admin_user.php中参数firstname的错误操作，可能导致SQL注入攻击。

Description (English)

CampCodes Online Learning Management System is an online learning management system for CampCodes in the Philippines. The version 1.0 of CampCodes Online Learning Management System has an injection loophole in SQL, which is the result of a mishandling of the parameter firstname in the document/admin/admin user.php, which could lead to an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Camtrace

Published

2025-09-22

Last Modified

2026-02-24

References

https://vuldb.com/?id.325175 https://www.campcodes.com/ https://vuldb.com/?submit.654545 https://vuldb.com/?ctiid.325175 https://github.com/244556089/cve/issues/1 https://access.redhat.com/security/cve/cve-2025-10817

Share on: