📦 Sales And Inventory System
by Campcodes
🔍 What is Sales And Inventory System?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
A critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in the /pages/settings_update.php file...
A critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in /pages/product_update.php. This aff...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'sid' parameter in the /pages/reprint_cash.php f...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the prod_name parameter in the product_add.php file....
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows attackers to execute arbitrary SQL commands through the Customer parameter in /pages/customer_account.php. ...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows attackers to execute arbitrary SQL commands via the Category parameter in /pages/cat_add.php. Remote attack...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the id/amount parameters in the /pages/account_add.p...
CVE-2025-4899 is a critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /pages/transa...
A critical SQL injection vulnerability in itsourcecode Sales and Inventory System 1.0 allows attackers to execute arbitrary SQL commands via the 'serial' parameter in the product_add.php file. This af...
Campcodes Sales and Inventory System 1.0 contains a critical SQL injection vulnerability in the supplier_update.php file that allows remote attackers to execute arbitrary SQL commands by manipulating ...
Campcodes Sales and Inventory System 1.0 contains a critical SQL injection vulnerability in the purchase_delete.php file that allows remote attackers to execute arbitrary SQL commands by manipulating ...
Campcodes Sales and Inventory System 1.0 contains a critical SQL injection vulnerability in the /pages/purchase_add.php file that allows remote attackers to manipulate database queries via the ID para...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows attackers to execute arbitrary SQL commands via the 'last' parameter in the customer_add.php file. Remote a...
Campcodes Sales and Inventory System 1.0 contains a critical SQL injection vulnerability in the /pages/credit_transaction_add.php file via the prod_name parameter. This allows remote attackers to exec...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'sid' parameter in /pages/print.php. Attackers c...
A critical SQL injection vulnerability exists in Campcodes Sales and Inventory System 1.0, specifically in the /pages/transaction_del.php file's ID parameter. Attackers can remotely execute arbitrary ...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to execute arbitrary SQL commands via the prod_name parameter in the /pages/stockin_add.ph...
A critical SQL injection vulnerability exists in Campcodes Sales and Inventory System 1.0, specifically in the discount parameter of the /pages/sales_add.php file. This allows remote attackers to exec...
This critical SQL injection vulnerability in Campcodes Sales and Inventory System 1.0 allows remote attackers to manipulate database queries via the ID parameter in customer_update.php. Attackers can ...
Campcodes Sales and Inventory System 1.0 contains a cross-site scripting (XSS) vulnerability in the /index.php file's page parameter. Attackers can inject malicious scripts that execute in users' brow...
CVE-2025-4735 is a critical unrestricted file upload vulnerability in Campcodes Sales and Inventory System 1.0. Attackers can remotely upload malicious files via the Picture parameter in /pages/produc...