CVE-2025-9920— CampCodes Recruitment Management System 安全漏洞

Campcodes Recruitment Management System index.php include file inclusion

A security flaw has been discovered in Campcodes Recruitment Management System 1.0. This impacts the function include of the file /admin/index.php. The manipulation of the argument page results in file inclusion. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

文件名或路径的外部可控制

CampCodes Recruitment Management System 安全漏洞

CampCodes Recruitment Management System是菲律宾CampCodes公司的一个招聘管理系统。 CampCodes Recruitment Management System 1.0版本存在安全漏洞，该漏洞源于对文件/admin/index.php中参数page的错误操作导致文件包含。

N/A

N/A