CVE-2025-6313

Name of the Vulnerable Software and Affected Versions Campcodes Sales and Inventory System version 1.0

Description A critical issue affects the processing of the file /pages/cat add.php. The manipulation of the Category argument leads to SQL injection. The attack can be initiated remotely. An exploit has been publicly disclosed and may be used.

Recommendations For Campcodes Sales and Inventory System version 1.0, consider restricting access to the /pages/cat add.php file until a patch is available. As a temporary workaround, avoid using the Category argument in the affected file to minimize the risk of exploitation.