Vulnerabilities in Campcodes

586 results
Vexday analysis

Com 573 CVEs catalogadas, o volume de vulnerabilidades associadas ao vendor Campcodes é expressivo, embora nenhuma delas figure atualmente no catálogo CISA KEV, situando a taxa de exploração ativa abaixo da média geral do catálogo. O tipo de falha mais recorrente é CWE-89 (injeção de SQL), o que indica padrões estruturais de desenvolvimento inseguro que tendem a facilitar comprometimento direto de bancos de dados. A CVE mais perigosa em observação no momento é CVE-2025-9744, com escore EPSS de 0,0166, uma das duas vulnerabilidades com PoC pública disponível — fator que, mesmo sem exploração ativa confirmada, eleva o risco de que isso mude em curto prazo. Equipes responsáveis por ambientes que utilizam produtos Campcodes devem priorizar a remediação de falhas de injeção e monitorar ativamente as duas entradas recentes dado o potencial de progressão.

CVE-2024-5109MEDIUMCampcodes Complete Web-Based School Management System student_payment_history.php sql injectionEPSS 0.4%CVE-2024-4910MEDIUMCampcodes Complete Web-Based School Management System student_exam_mark_insert_form1.php sql injectionEPSS 0.4%CVE-2024-5234MEDIUMCampcodes Complete Web-Based School Management System teacher_salary_history1.php sql injectionEPSS 0.4%CVE-2024-5237MEDIUMCampcodes Complete Web-Based School Management System timetable_grade_wise.php sql injectionEPSS 0.4%CVE-2024-5108MEDIUMCampcodes Complete Web-Based School Management System student_payment_details4.php sql injectionEPSS 0.4%CVE-2024-4908MEDIUMCampcodes Complete Web-Based School Management System student_attendance_history1.php sql injectionEPSS 0.4%CVE-2024-4907MEDIUMCampcodes Complete Web-Based School Management System show_student2.php sql injectionEPSS 0.4%CVE-2024-4911MEDIUMCampcodes Complete Web-Based School Management System student_exam_mark_update_form.php sql injectionEPSS 0.4%CVE-2024-5235MEDIUMCampcodes Complete Web-Based School Management System teacher_salary_invoice.php sql injectionEPSS 0.4%CVE-2025-11039MEDIUMCampcodes Computer Sales and Inventory System us_edit1.php sql injectionEPSS 0.4%CVE-2025-7454MEDIUMCampcodes Online Movie Theater Seat Reservation System manage_theater.php sql injectionEPSS 0.4%CVE-2025-7135MEDIUMCampcodes Online Recruitment Management System ajax.php sql injectionEPSS 0.4%CVE-2025-7136MEDIUMCampcodes Online Recruitment Management System view_vacancy.php sql injectionEPSS 0.4%CVE-2025-7455MEDIUMCampcodes Online Movie Theater Seat Reservation System manage_reserve.php sql injectionEPSS 0.4%CVE-2025-7183MEDIUMCampcodes Sales and Inventory System customer_account.php sql injectionEPSS 0.4%CVE-2025-7134MEDIUMCampcodes Online Recruitment Management System ajax.php sql injectionEPSS 0.4%CVE-2025-6955MEDIUMCampcodes Employee Management System aprocess.php sql injectionEPSS 0.4%CVE-2025-5676MEDIUMCampcodes Online Recruitment Management System ajax.php sql injectionEPSS 0.4%CVE-2025-5675MEDIUMCampcodes Online Teacher Record Management System bwdates-reports-details.php sql injectionEPSS 0.4%CVE-2025-7457MEDIUMCampcodes Online Movie Theater Seat Reservation System manage_movie.php sql injectionEPSS 0.4%