Jjjj6886

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A vulnerability was detected in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file `/student signup.php`. The manipulation of the argument `Username` results in SQL injection. The attack can be launched remotely. The exploit is now public and may be used. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Loan Management System version 1.0 **Description** A weakness exists in Campcodes Online Loan Management System that may allow for SQL injection. The issue is located in an unknown function of the file `/ajax.php?action=login`. Manipulation of the `Username` argument can trigger the issue and allow for remote exploitation. The exploit has been made publicly available. **Recommendations** As a temporary workaround, consider restricting access to the `/ajax.php?action=login` endpoint until a fix is available. Avoid using the `Username` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A security flaw exists in Campcodes Online Learning Management System 1.0. The vulnerability affects unknown code within the `/admin/login.php` file. Manipulation of the `Username` parameter results in SQL injection, allowing for remote attacks. The exploit has been released publicly. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.