CVE-2025-4917 | PHPGurukul Auto Taxi Stand Management System 1.0 new-autoortaxi-entry-form.php drivername sql injection

Inserito da Angelo Barbosa | Mag 17, 2025 | CVE

A vulnerability classified as critical has been found in PHPGurukul Auto Taxi Stand Management System 1.0. Affected is an unknown function of the file /admin/new-autoortaxi-entry-form.php. The manipulation of the argument drivername leads to sql injection.

This vulnerability is traded as CVE-2025-4917. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-4917 | PHPGurukul Auto Taxi Stand Management System 1.0 new-autoortaxi-entry-form.php drivername sql injection

Post correlati

CVE-2024-32998 | Huawei HarmonyOS/EMUI Clock Module uninitialized pointer

CVE-2024-38449 | KasmVNC path traversal

CVE-2024-48918 | RDSaiPlatforms RDSlight up to 1.0.x main.py input validation (GHSA-5f6w-8mqh-hv2g)

CVE-2023-52252 | Unified Remote 3.13.0 Lua access control (EDB-51309)