Campcodes Online Examination System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Campcodes Online Examination System.
By the Year
In 2026 there have been 0 vulnerabilities in Campcodes Online Examination System. Last year, in 2025 Online Examination System had 1 security vulnerability published. Right now, Online Examination System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 7.30 |
| 2024 | 16 | 8.31 |
It may take a day or so for new Online Examination System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Campcodes Online Examination System Security Vulnerabilities
CVE-2025-14668: SQLi in campcodes A.O.E.S 1.0 via /query/loginExe.php
CVE-2025-14668
7.3 - High
- December 14, 2025
A vulnerability was detected in campcodes Advanced Online Examination System 1.0. This affects an unknown function of the file /query/loginExe.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.
SQL Injection
SQL Injection in Campcodes Online Exam System 1.0 (addCourseExe.php)
CVE-2024-4919
9.8 - Critical
- May 16, 2024
A vulnerability was found in Campcodes Online Examination System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /adminpanel/admin/query/addCourseExe.php. The manipulation of the argument course_name leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-264454 is the identifier assigned to this vulnerability.
SQL Injection
Campcodes OES 1.0 - Critical SQLi via id in updateQuestion.php
CVE-2024-4918
9.8 - Critical
- May 15, 2024
A vulnerability was found in Campcodes Online Examination System 1.0. It has been classified as critical. This affects an unknown part of the file updateQuestion.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-264453 was assigned to this vulnerability.
SQL Injection
Campcodes OES 1.0 SQLi via exmne_id in submitAnswerExe.php
CVE-2024-4917
9.8 - Critical
- May 15, 2024
A vulnerability was found in Campcodes Online Examination System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file submitAnswerExe.php. The manipulation of the argument exmne_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-264452.
Campcodes Online Exam Sys 1.0 SELExamAttemptExe.php SQLi via thisId
CVE-2024-4916
9.8 - Critical
- May 15, 2024
A vulnerability has been found in Campcodes Online Examination System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file selExamAttemptExe.php. The manipulation of the argument thisId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-264451.
SQL Injection
Campcodes Online Examination System 1.0 Remote SQLi via result.php
CVE-2024-4915
9.8 - Critical
- May 15, 2024
A vulnerability, which was classified as critical, was found in Campcodes Online Examination System 1.0. Affected is an unknown function of the file result.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-264450 is the identifier assigned to this vulnerability.
SQL Injection
SQLi in ranking-exam.php of Campcodes OES 1.0 (remote, public exploit)
CVE-2024-4914
9.8 - Critical
- May 15, 2024
A vulnerability, which was classified as critical, has been found in Campcodes Online Examination System 1.0. This issue affects some unknown processing of the file ranking-exam.php. The manipulation of the argument exam_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-264449 was assigned to this vulnerability.
SQL Injection
CVE-2024-4913: Campcodes OES 1.0 Remote SQLi in exam.php (id arg)
CVE-2024-4913
9.8 - Critical
- May 15, 2024
A vulnerability classified as critical was found in Campcodes Online Examination System 1.0. This vulnerability affects unknown code of the file exam.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-264448.
SQL Injection
Campcodes OES 1.0 - addExamExe.php SQLi (examTitle)
CVE-2024-4912
9.8 - Critical
- May 15, 2024
A vulnerability classified as critical has been found in Campcodes Online Examination System 1.0. This affects an unknown part of the file addExamExe.php. The manipulation of the argument examTitle leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-264447.
SQL Injection
Critical SQLI in Campcodes OES 1.0 admin/query/deleteQuestionExe.php
CVE-2024-2942
6.5 - Medium
- March 27, 2024
A vulnerability, which was classified as critical, was found in Campcodes Online Examination System 1.0. This affects an unknown part of the file /adminpanel/admin/query/deleteQuestionExe.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-258033 was assigned to this vulnerability.
SQL Injection
Campcodes Online Exam Sys 1.0: SQLi via /admin/query/loginExe.php
CVE-2024-2941
9.8 - Critical
- March 27, 2024
A vulnerability, which was classified as critical, has been found in Campcodes Online Examination System 1.0. Affected by this issue is some unknown functionality of the file /adminpanel/admin/query/loginExe.php. The manipulation of the argument pass leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258032.
SQL Injection
Campcodes Online Examination System 1.0 SQLi via id in updateExaminee.php
CVE-2024-2945
6.5 - Medium
- March 27, 2024
A vulnerability was found in Campcodes Online Examination System 1.0. It has been classified as critical. Affected is an unknown function of the file /adminpanel/admin/facebox_modal/updateExaminee.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258036.
SQL Injection
Critical SQLi in Campcodes OES 1.0 deleteCourseExe.php
CVE-2024-2944
6.5 - Medium
- March 27, 2024
A vulnerability was found in Campcodes Online Examination System 1.0 and classified as critical. This issue affects some unknown processing of the file /adminpanel/admin/query/deleteCourseExe.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258035.
SQL Injection
Campcodes OS 1.0 DeleteExamExe.php SQLi (Critical)
CVE-2024-2943
6.5 - Medium
- March 27, 2024
A vulnerability has been found in Campcodes Online Examination System 1.0 and classified as critical. This vulnerability affects unknown code of the file /adminpanel/admin/query/deleteExamExe.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-258034 is the identifier assigned to this vulnerability.
SQL Injection
CVE-2024-2940: XSS via id argument in Campcodes OES 1.0 updateCourse.php
CVE-2024-2940
6.1 - Medium
- March 27, 2024
A vulnerability classified as problematic was found in Campcodes Online Examination System 1.0. Affected by this vulnerability is an unknown functionality of the file /adminpanel/admin/facebox_modal/updateCourse.php. The manipulation of the argument id leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258031.
SQLi in updateCourse.php of Campcodes OES 1.0
CVE-2024-2938
6.5 - Medium
- March 27, 2024
A vulnerability was found in Campcodes Online Examination System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /adminpanel/admin/facebox_modal/updateCourse.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-258029 was assigned to this vulnerability.
SQL Injection
CVE-2024-2939: XSS in Campcodes OES 1.0: updateExaminee.php id param
CVE-2024-2939
6.1 - Medium
- March 27, 2024
A vulnerability classified as problematic has been found in Campcodes Online Examination System 1.0. Affected is an unknown function of the file /adminpanel/admin/facebox_modal/updateExaminee.php. The manipulation of the argument id leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-258030 is the identifier assigned to this vulnerability.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Campcodes Online Examination System or by Campcodes? Click the Watch button to subscribe.
