CVE-2025-4873 | PHPGurukul News Portal 4.1 Login /admin/index.php Username sql injection

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php of the component Login. The manipulation of the argument Username leads to sql injection.

This vulnerability is known as CVE-2025-4873. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-4873 | PHPGurukul News Portal 4.1 Login /admin/index.php Username sql injection

Post correlati

CVE-2023-28722 | Intel NUC BIOS prior IN0048 BIOS Firmware unknown vulnerability (intel-sa-01009)

CVE-2024-27380 | Samsung Exynos 1330 slsi_set_delayed_wakeup_type heap-based overflow

CVE-2025-0874 | code-projects Simple Plugins Car Rental Management 1.0 /admin/approve.php id sql injection

CVE-2024-0117 | NVIDIA GPU/vGPU/Cloud Gaming prior 16.8/17.4 on Windows User Mode Layer out-of-bounds