CVE-2025-7155 | PHPGurukul Online Notes Sharing System 1.0 Cookie /Dashboard sessionid sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Online Notes Sharing System 1.0. This affects an unknown part of the file /Dashboard of the component Cookie Handler. The manipulation of the argument sessionid leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-7155. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The original researcher disclosure suspects an XPath Injection vulnerability; however, the provided attack payload appears to be characteristic of an SQL Injection attack.

CVE-2025-7155 | PHPGurukul Online Notes Sharing System 1.0 Cookie /Dashboard sessionid sql injection

Post correlati

CVE-2024-7281 | SourceCodester Lot Reservation Management System 1.0 index.php id sql injection

CVE-2023-28897 | PREH MIB3 Infotainment Unit up to 0304 UDS Services hard-coded credentials

CVE-2024-36668 | idcCMS 1.35 type_deal.php cross-site request forgery

CVE-2024-56560 | Linux Kernel up to 6.12.3 slab create_cache denial of service