CVE-2025-5837 | PHPGurukul Employee Record Management System 1.3 /admin/allemployees.php delid sql injection

Inserito da Angelo Barbosa | Giu 6, 2025 | CVE

A vulnerability classified as critical has been found in PHPGurukul Employee Record Management System 1.3. Affected is an unknown function of the file /admin/allemployees.php. The manipulation of the argument delid leads to sql injection.

This vulnerability is traded as CVE-2025-5837. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-5837 | PHPGurukul Employee Record Management System 1.3 /admin/allemployees.php delid sql injection

Post correlati

CVE-2024-25623 | Mastodon up to 3.5.18/4.0.14/4.1.14/4.2.6 HTTP Header Content-Type unrestricted upload

CVE-2024-29900 | electron packager 18.3.0 Environment Variable environment unknown vulnerability

CVE-2024-44278 | Apple watchOS information disclosure

CVE-2024-32667 | Intel OpenCL out-of-bounds (intel-sa-01163)