CVE-2025-4361 | PHPGurukul Company Visitor Management System 2.0 /department.php departmentname sql injection

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability classified as critical has been found in PHPGurukul Company Visitor Management System 2.0. This affects an unknown part of the file /department.php. The manipulation of the argument departmentname leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-4361. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-4361 | PHPGurukul Company Visitor Management System 2.0 /department.php departmentname sql injection

Post correlati

CVE-2024-41603 | Spina CMS 2.18.0 /admin/layout cross-site request forgery

CVE-2024-10505 | wuzhicms 4.1.0 block.php add/edit code injection

CVE-2025-1856 | Codezips Gym Management System 1.0 gen_invoice.php id sql injection

CVE-2024-9358 | ThingsBoard up to 3.7.0 HTTP RPC API resource consumption