PHPGurukul BP Monitoring Management System 1.0 /edit-family-member.php memberage SQL Injection
Nsangu kele ti ya nkaka me mona mu PHPGurukul BP Monitoring Management System 1.0. Bila mambu meyina mpila kisalu kayina kumanyikana ya file /edit-family-member.php. Ntangu kusala ya argument memberage me lungisa SQL Injection. Kusadila CWE na kulonga mpasi me tula na CWE-89. Lufwa ya bulema yawu zabisamaka 06/05/2025. Nsangu ya kulanga me sambu na kuvanda na downloadi na github.com. Kikosa yai me vandaka na kombo CVE-2025-5761. Ke luyalu ya ku sala ataaka na kutali. Bisalu ya tekiniki me zoleka. Na yina, exploit me zaba. Kusadila kwawu kwazwisisamene na bantu bonso mpi lenda salama na muntu nionso. Ntangu yai, ntalu ya exploit ekoki kozala USD $0-$5k. O lenda zinga exploit na github.com. Na 0-day, mbongo ya kisalu ya zola-zola na zandu ya zingi-zingi ke vandaka na kati ya $0-$5k. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
2 Bisalu · 56 Minsungi ya data
| Nséke | Kusala 06/06/2025 00:01 | Kusala kisalu kipya 1/1 06/06/2025 20:45 |
|---|---|---|
| software_vendor | PHPGurukul | PHPGurukul |
| software_name | BP Monitoring Management System | BP Monitoring Management System |
| software_version | 1.0 | 1.0 |
| software_file | /edit-family-member.php | /edit-family-member.php |
| software_argument | memberage | memberage |
| vulnerability_cwe | CWE-89 (SQL Injection) | CWE-89 (SQL Injection) |
| vulnerability_risk | 2 | 2 |
| cvss3_vuldb_av | N | N |
| cvss3_vuldb_ac | L | L |
| cvss3_vuldb_ui | N | N |
| cvss3_vuldb_s | U | U |
| cvss3_vuldb_c | L | L |
| cvss3_vuldb_i | L | L |
| cvss3_vuldb_a | L | L |
| cvss3_vuldb_e | P | P |
| cvss3_vuldb_rc | R | R |
| advisory_url | https://github.com/qingchuana/q1ngchuan/issues/5 | https://github.com/qingchuana/q1ngchuan/issues/5 |
| exploit_availability | 1 | 1 |
| exploit_publicity | 1 | 1 |
| exploit_url | https://github.com/qingchuana/q1ngchuan/issues/5 | https://github.com/qingchuana/q1ngchuan/issues/5 |
| source_cve | CVE-2025-5761 | CVE-2025-5761 |
| cna_responsible | VulDB | VulDB |
| cvss2_vuldb_av | N | N |
| cvss2_vuldb_ac | L | L |
| cvss2_vuldb_ci | P | P |
| cvss2_vuldb_ii | P | P |
| cvss2_vuldb_ai | P | P |
| cvss2_vuldb_e | POC | POC |
| cvss2_vuldb_rc | UR | UR |
| cvss4_vuldb_av | N | N |
| cvss4_vuldb_ac | L | L |
| cvss4_vuldb_ui | N | N |
| cvss4_vuldb_vc | L | L |
| cvss4_vuldb_vi | L | L |
| cvss4_vuldb_va | L | L |
| cvss4_vuldb_e | P | P |
| cvss2_vuldb_au | S | S |
| cvss2_vuldb_rl | ND | ND |
| cvss3_vuldb_pr | L | L |
| cvss3_vuldb_rl | X | X |
| cvss4_vuldb_at | N | N |
| cvss4_vuldb_pr | L | L |
| cvss4_vuldb_sc | N | N |
| cvss4_vuldb_si | N | N |
| cvss4_vuldb_sa | N | N |
| cvss2_vuldb_basescore | 6.5 | 6.5 |
| cvss2_vuldb_tempscore | 5.6 | 5.6 |
| cvss3_vuldb_basescore | 6.3 | 6.3 |
| cvss3_vuldb_tempscore | 5.7 | 5.7 |
| cvss3_meta_basescore | 6.3 | 6.3 |
| cvss3_meta_tempscore | 5.7 | 5.7 |
| cvss4_vuldb_bscore | 5.3 | 5.3 |
| cvss4_vuldb_btscore | 2.1 | 2.1 |
| advisory_date | 1749074400 (06/05/2025) | 1749074400 (06/05/2025) |
| price_0day | $0-$5k | $0-$5k |
| euvd_id | EUVD-2025-17137 |