CVE-2025-4508 | PHPGurukul e-Diary Management System 1.0 /my-profile.php fname sql injection

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability classified as critical was found in PHPGurukul e-Diary Management System 1.0. This vulnerability affects unknown code of the file /my-profile.php. The manipulation of the argument fname leads to sql injection.

This vulnerability was named CVE-2025-4508. The attack can be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-4508 | PHPGurukul e-Diary Management System 1.0 /my-profile.php fname sql injection

Post correlati

CVE-2024-2232 | Macaron Himer Plugin up to 2.1.2 on WordPress Private Group cross-site request forgery

CVE-2024-4792 | Campcodes Online Laundry Management System 1.0 /admin_class.php sql injection

CVE-2024-36473 | Trend Micro VPN Proxy One Pro link following

CVE-2023-46187 | IBM InfoSphere Master Data Management 11.6/12.0/14.0 cross site scripting