Security Advisory

CVE-2025-9502

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-27 02:32:12

Last updated 2025-08-27 14:02:40

Assigner VulDB

State PUBLISHED

Description

A weakness has been identified in Campcodes Online Loan Management System 1.0. This impacts an unknown function of the file /ajax.php?action=save_payment. Executing manipulation of the argument loan_id can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be exploited.

← Browse all CVEs View on cve.org ↗