CVE-2025-4717 | PHPGurukul Company Visitor Management System 2.0 /visitors-form.php fullname sql injection

Inserito da Angelo Barbosa | Mag 15, 2025 | CVE

A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor Management System 2.0. Affected is an unknown function of the file /visitors-form.php. The manipulation of the argument fullname leads to sql injection.

This vulnerability is traded as CVE-2025-4717. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-4717 | PHPGurukul Company Visitor Management System 2.0 /visitors-form.php fullname sql injection

Post correlati

CVE-2024-23448 | Elastic APM Server up to 8.12.0 Error log file

CVE-2024-54434 | Phoetry phZoom Plugin up to 1.2.92 on WordPress cross-site request forgery

CVE-2024-51627 | Kaedinger Audio Comparison Lite Plugin up to 3.4 on WordPress cross site scripting

VDB-263599 | Campcodes Complete Web-Based School Management System 1.0 /view/find_friends.php my_type cross site scripting