Vulnerabilities in Campcodes

586 results
Vexday analysis

Com 573 CVEs catalogadas, o volume de vulnerabilidades associadas ao vendor Campcodes é expressivo, embora nenhuma delas figure atualmente no catálogo CISA KEV, situando a taxa de exploração ativa abaixo da média geral do catálogo. O tipo de falha mais recorrente é CWE-89 (injeção de SQL), o que indica padrões estruturais de desenvolvimento inseguro que tendem a facilitar comprometimento direto de bancos de dados. A CVE mais perigosa em observação no momento é CVE-2025-9744, com escore EPSS de 0,0166, uma das duas vulnerabilidades com PoC pública disponível — fator que, mesmo sem exploração ativa confirmada, eleva o risco de que isso mude em curto prazo. Equipes responsáveis por ambientes que utilizam produtos Campcodes devem priorizar a remediação de falhas de injeção e monitorar ativamente as duas entradas recentes dado o potencial de progressão.

CVE-2025-5224MEDIUMCampcodes Online Hospital Management System add-doctor.php sql injectionEPSS 0.4%CVE-2025-5364MEDIUMCampcodes Online Hospital Management System add-patient.php sql injectionEPSS 0.4%CVE-2025-5229MEDIUMCampcodes Online Hospital Management System view-patient.php sql injectionEPSS 0.4%CVE-2025-5246MEDIUMCampcodes Online Hospital Management System query-details.php sql injectionEPSS 0.4%CVE-2025-4929MEDIUMCampcodes Online Shopping Portal my-account.php sql injectionEPSS 0.4%CVE-2025-5358MEDIUMPHPGurukul/Campcodes Cyber Cafe Management System bwdates-reports-details.php sql injectionEPSS 0.4%CVE-2025-5362MEDIUMCampcodes Online Hospital Management System doctor-specilization.php sql injectionEPSS 0.4%CVE-2025-4506MEDIUMCampcodes Online Food Ordering System menu-router.php sql injectionEPSS 0.4%CVE-2025-5359MEDIUMCampcodes Online Hospital Management System appointment-history.php sql injectionEPSS 0.4%CVE-2025-5057MEDIUMCampcodes Online Shopping Portal insert-product.php sql injectionEPSS 0.4%CVE-2025-5363MEDIUMCampcodes Online Hospital Management System index.php sql injectionEPSS 0.4%CVE-2024-5110MEDIUMCampcodes Complete Web-Based School Management System student_payment_invoice.php sql injectionEPSS 0.4%CVE-2024-4909MEDIUMCampcodes Complete Web-Based School Management System student_due_payment.php sql injectionEPSS 0.4%CVE-2024-5240MEDIUMCampcodes Complete Web-Based School Management System unread_msg.php sql injectionEPSS 0.4%CVE-2024-5233MEDIUMCampcodes Complete Web-Based School Management System teacher_salary_details3.php sql injectionEPSS 0.4%CVE-2024-5238MEDIUMCampcodes Complete Web-Based School Management System timetable_insert_form.php sql injectionEPSS 0.4%CVE-2024-5231MEDIUMCampcodes Complete Web-Based School Management System teacher_salary_details.php sql injectionEPSS 0.4%CVE-2024-5107MEDIUMCampcodes Complete Web-Based School Management System student_payment_details2.php sql injectionEPSS 0.4%CVE-2024-5239MEDIUMCampcodes Complete Web-Based School Management System timetable_update_form.php sql injectionEPSS 0.4%CVE-2024-5109MEDIUMCampcodes Complete Web-Based School Management System student_payment_history.php sql injectionEPSS 0.4%