PT-2025-4074 · Unknown · Campcodes School Management
Khukuririmal
·
Published
2025-01-30
·
Updated
2025-01-30
·
CVE-2025-0849
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
CampCodes School Management Software version 1.0
Description
A critical issue has been found in the Staff Handler component, specifically in an unknown function of the file "/edit-staff/". This leads to improper authorization and can be exploited remotely. The issue has been publicly disclosed and may be used for attacks.
Recommendations
CampCodes School Management Software version 1.0: Update the Staff Handler component to prevent improper authorization, specifically ensuring that the "/edit-staff/" file and its associated functions are secured against remote exploitation.
Exploit
Fix
RCE
Improper Authorization
Incorrect Privilege Assignment
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Campcodes School Management