CVE-2025-13260 – Campcodes Supplier Management System edit_product.php sql injection

CVE ID : CVE-2025-13260

Published : Nov. 17, 2025, 4:15 a.m. | 48 minutes ago

Description : A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/edit_product.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…