CVE-2025-4873 | PHPGurukul News Portal 4.1 Login /admin/index.php Username sql injection

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php of the component Login. The manipulation of the argument Username leads to sql injection.

This vulnerability is known as CVE-2025-4873. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-4873 | PHPGurukul News Portal 4.1 Login /admin/index.php Username sql injection

Post correlati

CVE-2024-12844 | Emlog Pro up to 2.4.1 /admin/store.php tag cross site scripting

CVE-2024-7647 | OTA Sync Booking Engine Widget Plugin 1.2.7 on WordPress cross-site request forgery

CVE-2024-5261 | LibreOffice up to 24.2.3 LibreOfficeKit Mode certificate validation

CVE-2024-13034 | code-projects Chat System 1.0 /admin/update_user.php name cross site scripting