Security Advisory

CVE-2025-12873

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-07 18:02:07

Last updated 2025-11-07 18:27:05

Assigner VulDB

State PUBLISHED

Description

A security flaw has been discovered in Campcodes School File Management 1.0. This affects an unknown part of the file /admin/update_user.php. Performing manipulation of the argument user_id results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.

← Browse all CVEs View on cve.org ↗