Security Advisory

CVE-2025-9678

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-29 21:32:07

Last updated 2025-09-02 15:20:15

Assigner VulDB

State PUBLISHED

Description

A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=delete_borrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited.

← Browse all CVEs View on cve.org ↗