Campcodes · Campcodes Supplier Management System · CVE-2026-0597
**Name of the Vulnerable Software and Affected Versions**
Campcodes Supplier Management System version 1.0
**Description**
A flaw exists in Campcodes Supplier Management System version 1.0, specifically within the file `/retailer/edit profile.php`. The manipulation of the `txtRetailerAddress` argument can lead to a SQL injection. Remote exploitation is possible. The exploit has been published.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.