Unrated severityNVD Advisory· Published Jan 9, 2025· Updated Jan 9, 2025
CampCodes DepEd Equipment Inventory System add_employee.php cross site scripting
CVE-2025-0348
Description
A vulnerability was found in CampCodes DepEd Equipment Inventory System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /data/add_employee.php. The manipulation of the argument data leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2≤ 1.0+ 1 more
- (no CPE)range: ≤ 1.0
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
5- github.com/shaturo1337/POCs/blob/main/Stored%20XSS%20Vulnerability%20in%20DepEd%20Equipment%20Inventory%20System.mdmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.campcodes.commitreproduct
News mentions
0No linked articles in our index yet.