CVE-2025-7219

Severity CVSS v4.0:
MEDIUM
Type:
CWE-74 Injection
Publication date:
09/07/2025
Last modified:
10/07/2025

Description

A vulnerability was found in Campcodes Payroll Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /ajax.php?action=delete_allowances. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.