CVE-2025-4073 | PHPGurukul Student Record System 3.20 /change-password.php currentpassword sql injection

Inserito da Angelo Barbosa | Apr 29, 2025 | CVE

A vulnerability was found in PHPGurukul Student Record System 3.20. It has been classified as critical. Affected is an unknown function of the file /change-password.php. The manipulation of the argument currentpassword leads to sql injection.

This vulnerability is traded as CVE-2025-4073. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-4073 | PHPGurukul Student Record System 3.20 /change-password.php currentpassword sql injection

Post correlati

CVE-2024-5509 | Luxion KeyShot BIP File Parser uncontrolled search path

CVE-2024-10351 | Tenda RX9 Pro 22.03.02.20 POST Request /goform/setMacFilterCfg sub_424CE0 deviceList stack-based overflow

CVE-2024-44197 | Apple macOS up to 13.6/14.6 denial of service

CVE-2024-6276 | lahirudanushka School Management System 1.0.0/1.0.1 Teacher Page teacher.php update sql injection