CVE-2025-5838 | PHPGurukul Employee Record Management System 1.3 /admin/adminprofile.php AdminName sql injection

Inserito da Angelo Barbosa | Giu 6, 2025 | CVE

A vulnerability classified as critical was found in PHPGurukul Employee Record Management System 1.3. Affected by this vulnerability is an unknown functionality of the file /admin/adminprofile.php. The manipulation of the argument AdminName leads to sql injection.

This vulnerability is known as CVE-2025-5838. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-5838 | PHPGurukul Employee Record Management System 1.3 /admin/adminprofile.php AdminName sql injection

Post correlati

CVE-2025-5701 | HyperComments Plugin up to 1.2.2 on WordPress hc_request_handler improper authorization

CVE-2024-29971 | Scontain SCONE 5.8.0 Signal injection

CVE-2024-24881 | VeronaLabs WP SMS Plugin up to 6.5.2 on WordPress cross site scripting

VDB-247052 | Google Go up to 1.20.11/1.21.4 cmd-go cleartext transmission