Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
Campcodes Complete Online Learning Management System allows unauthorized file upload
CVE-2026-5546
Summary
A weakness in Campcodes Complete Online Learning Management System 1.0 allows attackers to upload any file without restriction, potentially leading to malicious content being shared on the system. This could compromise user data or disrupt the system. To protect your system, update to the latest version or patch the affected file.
Original title
A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function add_lesson of the file /application/models/Crud_model.php. This manipulation causes unre...
Original description
A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function add_lesson of the file /application/models/Crud_model.php. This manipulation causes unrestricted upload. It is possible to initiate the attack remotely. The exploit has been published and may be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
6.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-284
Improper Access Control
CWE-434
Unrestricted File Upload
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026