CVE-2025-7219: SQL Injection in Campcodes Payroll Management System
A vulnerability was found in Campcodes Payroll Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /ajax.php?action=delete_allowances. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7219: SQL Injection in Campcodes Payroll Management System
Description
A vulnerability was found in Campcodes Payroll Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /ajax.php?action=delete_allowances. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-07-07T13:31:02.974Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 686e0b1e6f40f0eb72ffdce3
Added to database: 7/9/2025, 6:24:30 AM
Last updated: 7/9/2025, 6:24:30 AM
Views: 1
Related Threats
CVE-2025-6742: CWE-502 Deserialization of Untrusted Data in brainstormforce SureForms – Drag and Drop Form Builder for WordPress
HighCVE-2025-6691: CWE-73 External Control of File Name or Path in brainstormforce SureForms – Drag and Drop Form Builder for WordPress
HighCVE-2025-7218: SQL Injection in Campcodes Payroll Management System
MediumCVE-2025-7217: SQL Injection in Campcodes Payroll Management System
MediumCVE-2025-7216: Deserialization in lty628 Aidigu
MediumActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.