CVE-2025-5231 | PHPGurukul Company Visitor Management System 1.0 /forgot-password.php email sql injection

Inserito da Angelo Barbosa | Mag 26, 2025 | CVE

A vulnerability classified as critical was found in PHPGurukul Company Visitor Management System 1.0. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection.

This vulnerability was named CVE-2025-5231. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-5231 | PHPGurukul Company Visitor Management System 1.0 /forgot-password.php email sql injection

Post correlati

CVE-2023-20258 | Cisco Prime Infrastructure Web-based Management Interface Privilege Escalation (cisco-sa-pi-epnm-wkZJeyeq)

CVE-2024-3736 | cym1102 nginxWebUI up to 3.9.9 /adminPage/main/upload unrestricted upload

CVE-2024-11237 | TP-Link VN020 F3v(T) TT_V6.2.1021 DHCP DISCOVER Packet Parser hostname TP-Thumper stack-based overflow

CVE-2024-43740 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)