Liu San

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the file `/admin/de activate.php` and affects an unknown function. Manipulation of the `ID` argument can lead to SQL injection, and the attack can be launched remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A flaw exists in Campcodes Online Learning Management System version 1.0 that allows for SQL injection. The issue is located in the file `/admin/edit teacher.php` and involves manipulation of the `department` argument. Remote exploitation is possible. The exploit has been made public. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.