Login Sign Up

CVE-2025-11349

7.3 HIGH
SQL Injection

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary SQL commands via the searchdata parameter in /search-visitor.php in Campcodes Online Apartment Visitor Management System 1.0. Attackers can potentially read, modify, or delete database content. All users running version 1.0 are affected.

💻 Affected Systems

Products:
  • Campcodes Online Apartment Visitor Management System
Versions: 1.0
Operating Systems: Any
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable. The system must be accessible via web interface.

📦 What is this software?

Online Apartment Visitor Management System by Campcodes

View all CVEs affecting Online Apartment Visitor Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including sensitive visitor data theft, system takeover via privilege escalation, and potential lateral movement to other systems.

🟠

Likely Case

Unauthorized access to visitor records, personal data exfiltration, and database manipulation affecting system integrity.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only read access to non-sensitive data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public exploit available on GitHub. SQL injection via searchdata parameter requires minimal technical skill.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.campcodes.com/

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Input Validation Filter

all

Add server-side input validation to sanitize searchdata parameter before processing

Modify /search-visitor.php to include parameterized queries or input sanitization

Web Application Firewall

all

Deploy WAF with SQL injection rules to block malicious requests

Configure WAF to block SQL injection patterns in searchdata parameter

🧯 If You Can't Patch

  • Isolate the system behind a firewall with strict access controls
  • Implement network segmentation to limit database server exposure

🔍 How to Verify

Check if Vulnerable:

Test /search-visitor.php with SQL injection payloads in searchdata parameter

Check Version:

Check system version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return proper error handling

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in application logs
  • Multiple failed search attempts with special characters

Network Indicators:

  • HTTP POST requests to /search-visitor.php containing SQL keywords in parameters

SIEM Query:

source="web_logs" AND uri="/search-visitor.php" AND (param="searchdata" AND value CONTAINS "UNION" OR value CONTAINS "SELECT" OR value CONTAINS "--")

📊 Metadata

CVE ID: CVE-2025-11349
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.05% exploit probability (14.7th percentile)
Published: October 7, 2025
Last Updated: October 9, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-11349, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)