Campcodes · Campcodes School Fees Payment Management System · CVE-2025-13057
**Name of the Vulnerable Software and Affected Versions**
Campcodes School Fees Payment Management System version 1.0
**Description**
A flaw exists in Campcodes School Fees Payment Management System 1.0. The issue involves the manipulation of the `ID` argument in the file '/ajax.php?action=save student', leading to a SQL injection condition. This issue may be triggered remotely. The exploit is publicly available.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.