CVE-2025-5249 | PHPGurukul News Portal Project 4.1 /admin/add-category.php Category sql injection

Inserito da Angelo Barbosa | Mag 27, 2025 | CVE

A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-category.php. The manipulation of the argument Category leads to sql injection.

This vulnerability is known as CVE-2025-5249. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-5249 | PHPGurukul News Portal Project 4.1 /admin/add-category.php Category sql injection

Post correlati

CVE-2024-47618 | Sulu up to 2.6.4 SVG File cross site scripting

CVE-2024-3423 | SourceCodester Online Courseware 1.0 admin/activateteach.php selector sql injection

CVE-2023-0757 | Phoenix Contact MULTIPROG/ProConOS eCLR permission assignment (VDE-2023-051)

CVE-2024-35539 | Typecho 1.3.0 Post Comment race condition