Reconnecting to live updates…

CVE-2025-15206: SQL Injection in Campcodes Supplier Management System

Medium

VulnerabilityCVE-2025-15206cve cve-2025-15206

Published: Mon Dec 29 2025 (12/29/2025, 21:32:07 UTC)

Source: CVE Database V5

Vendor/Project: Campcodes

Product: Supplier Management System

Description

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/add_area.php. Executing manipulation of the argument txtAreaCode can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used.

Technical Details

Data Version: 5.2
Assigner Short Name: VulDB
Date Reserved: 2025-12-28T10:28:24.726Z
Cvss Version: 4.0
State: PUBLISHED

Threat ID: 6952f69a71a94549f15705f3

Added to database: 12/29/2025, 9:46:02 PM

Last updated: 12/30/2025, 1:51:51 AM

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by

Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Related Threats

CVE-2025-15213: Improper Authorization in code-projects Student File Management System

Medium

VulnerabilityTue Dec 30 2025

CVE-2025-15212: SQL Injection in code-projects Refugee Food Management System

Medium

VulnerabilityTue Dec 30 2025

CVE-2025-15211: SQL Injection in code-projects Refugee Food Management System

Medium

VulnerabilityTue Dec 30 2025

CVE-2025-23550: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Kemal YAZICI Product Puller

High

VulnerabilityTue Dec 30 2025

CVE-2025-23554: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jakub Glos Off Page SEO

High

VulnerabilityTue Dec 30 2025

Actions

Please log in to the Console to use AI analysis features.

External Links

NVD Database MITRE CVE Reference 1 Reference 2 Reference 3 Reference 4 Reference 5 Search on Google

Need more coverage?

Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

CVE-2025-15206: SQL Injection in Campcodes Supplier Management System

CVE-2025-15206: SQL Injection in Campcodes Supplier Management System

Description

Technical Details

Community Reviews

Related Threats

CVE-2025-15213: Improper Authorization in code-projects Student File Management System

CVE-2025-15212: SQL Injection in code-projects Refugee Food Management System

CVE-2025-15211: SQL Injection in code-projects Refugee Food Management System

CVE-2025-23550: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Kemal YAZICI Product Puller

CVE-2025-23554: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jakub Glos Off Page SEO

Actions

External Links

Need more coverage?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility