Zc0510

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the file `/admin/edit student.php`. Manipulation of the `cys` argument can lead to SQL injection. The attack can be carried out remotely. The exploit has been made public. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the file `/admin/save student.php`. Manipulation of the `class id` argument can lead to SQL injection. The attack can be performed remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A flaw exists in Campcodes Online Learning Management System that allows for SQL injection. The issue is located in the processing of the `/admin/edit department.php` file. Manipulation of the `d` argument can trigger the injection. This can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A security issue exists in Campcodes Online Learning Management System. Remote attackers can exploit a SQL injection flaw by manipulating the `d` argument in the /admin/department.php file through an unknown function. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Learning Management System version 1.0 **Description** A SQL injection issue exists in Campcodes Online Learning Management System. The issue is located in the file `/admin/edit user.php` within an unknown function. Manipulation of the `firstname` argument can lead to a successful exploit. The attack can be carried out remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.