CVE-2025-0348 Information

Description

A vulnerability was found in CampCodes DepEd Equipment Inventory System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /data/add_employee.php. The manipulation of the argument data leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/shaturo1337/POCs/blob/main/Stored%20XSS%20Vulnerability%20in%20DepEd%20Equipment%20Inventory%20System.md https://vuldb.com/?ctiid.290861 https://vuldb.com/?id.290861 https://vuldb.com/?submit.476908 https://www.campcodes.com/