A vulnerability was found in Campcodes Online Job Finder System 1.0. It has been classified as critical. This affects an unknown function of the file /index.php?q=result&searchfor=bycompany. This manipulation of the argument Search causes sql injection.
This vulnerability is handled as CVE-2025-10448. The attack can be initiated remotely. Additionally, an exploit exists.
A vulnerability was found in Campcodes Online Job Finder System 1.0 and classified as critical. The impacted element is an unknown function of the file /eris/applicationform.php. The manipulation of the argument picture results in unrestricted upload.
This vulnerability is known as CVE-2025-10447. It is possible to launch the attack remotely. Furthermore, an exploit is available.
A vulnerability has been found in Campcodes Computer Sales and Inventory System 1.0 and classified as critical. The affected element is an unknown function of the file /pages/cust_searchfrm.php?action=edit. The manipulation of the argument ID leads to sql injection.
This vulnerability is traded as CVE-2025-10446. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
A vulnerability, which was classified as critical, was found in Campcodes Computer Sales and Inventory System 1.0. Impacted is an unknown function of the file /pages/us_transac.php?action=add. Executing manipulation of the argument Username can lead to sql injection.
This vulnerability appears as CVE-2025-10445. The attack may be performed from remote. In addition, an exploit is available.
A vulnerability, which was classified as critical, has been found in Campcodes Online Job Finder System 1.0. This issue affects some unknown processing of the file /advancesearch.php. Performing manipulation of the argument Username results in sql injection.
This vulnerability is reported as CVE-2025-10444. The attack is possible to be carried out remotely. Moreover, an exploit is present.
A vulnerability classified as critical was found in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow.
This vulnerability is documented as CVE-2025-10443. The attack can be executed remotely. Additionally, an exploit exists.
A vulnerability classified as critical has been found in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection.
This vulnerability is registered as CVE-2025-10442. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
A vulnerability described as critical has been identified in D-Link DI-8100G, DI-8200G and DI-8003G 17.12.20A1/19.12.10A1. Affected by this issue is the function sub_433F7C of the file version_upgrade.asp of the component jhttpd. The manipulation of the argument path results in os command injection.
This vulnerability is cataloged as CVE-2025-10441. The attack may be launched remotely. Furthermore, there is an exploit available.