Vulnerability Description
A vulnerability has been found in Campcodes Online Shopping System 1.0. This impacts an unknown function of the file /login.php. Such manipulation of the argument Password leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Campcodes | Online Shopping System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/lrjbsyh/CVE_Hunter/issues/6ExploitIssue Tracking
- https://github.com/lrjbsyh/CVE_Hunter/issues/6#issue-3339330450ExploitIssue Tracking
- https://vuldb.com/?ctiid.321903Permissions RequiredVDB Entry
- https://vuldb.com/?id.321903Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.638843Third Party AdvisoryVDB Entry
- https://www.campcodes.com/Product
- https://github.com/lrjbsyh/CVE_Hunter/issues/6ExploitIssue Tracking
- https://github.com/lrjbsyh/CVE_Hunter/issues/6#issue-3339330450ExploitIssue Tracking
FAQ
What is CVE-2025-9691?
CVE-2025-9691 is a vulnerability with a CVSS score of 7.3 (HIGH). A vulnerability has been found in Campcodes Online Shopping System 1.0. This impacts an unknown function of the file /login.php. Such manipulation of the argument Password leads to sql injection. The ...
How severe is CVE-2025-9691?
CVE-2025-9691 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-9691?
Check the references section above for vendor advisories and patch information. Affected products include: Campcodes Online Shopping System.