GCVE - cpe:2.3:a:campcodes:online_flight_booking_management

Approved changes feed: RSS · Atom

cpe:2.3:a:campcodes:online_flight_booking_management_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Campcodes (`0cbc38b8-6075-5b10-9920-3b1d3efa5f42`)
Product	Online Flight Booking Management System (`a919a101-73b5-5cdb-8ea4-5af11cc07ae7`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-8960`	vulnerable	2026-06-03 15:13:45.170236	Campcodes Online Flight Booking Management System save_airlines.php sql injection HIGH (7.3) A vulnerability has been found in Campcodes Online Flight Booking Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/save_airlines.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-08-14T11:32:10.043Z Updated: 2025-08-14T13:29:46.819Z Open on db.gcve.eu Reference links https://vuldb.com/?id.319952 https://vuldb.com/?ctiid.319952 https://vuldb.com/?submit.627900 https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/ykgg3tumuaefd0ft?singleDoc https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/ykgg3tumuaefd0ft#vulnerability-details-and-poc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-8957`	vulnerable	2026-06-03 15:13:45.162300	Campcodes Online Flight Booking Management System flights.php sql injection HIGH (7.3) A vulnerability was determined in Campcodes Online Flight Booking Management System 1.0. Affected is an unknown function of the file /flights.php. The manipulation of the argument departure_airport_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2025-08-14T10:32:09.728Z Updated: 2025-08-14T14:48:46.786Z Open on db.gcve.eu Reference links https://vuldb.com/?id.319926 https://vuldb.com/?ctiid.319926 https://vuldb.com/?submit.627840 https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/xsngklzdixvub9si?singleDoc https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/xsngklzdixvub9si#vulnerability-details-and-poc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-8952`	vulnerable	2026-06-03 15:13:45.153554	Campcodes Online Flight Booking Management System Login ajax.php sql injection HIGH (7.3) A vulnerability was found in Campcodes Online Flight Booking Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Login. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-08-14T08:32:08.881Z Updated: 2025-08-14T19:16:31.730Z Open on db.gcve.eu Reference links https://vuldb.com/?id.319921 https://vuldb.com/?ctiid.319921 https://vuldb.com/?submit.627814 https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/mlyefhpcsdan2df3?singleDoc https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/mlyefhpcsdan2df3#vulnerability-details-and-poc	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

CampCodes Online Flight Booking Management System 1.0

PURL mappings

Vulnerability references

Contribute