VDB-311145 · CVE-2025-5655 · EUVD-2025-16985

PHPGurukul Complaint Management System 2.0 edit-subcategory.php subcategory SQL ଇଞ୍ଜେକ୍ସନ

Rakkoon nageenyaa kan ଜଟିଳ jedhamuun beekamu PHPGurukul Complaint Management System 2.0 keessatti argameera. Kan miidhamte is hojii hin beekamne faayilii /admin/edit-subcategory.php keessa. Hojii jijjiirraa irratti gaggeeffame subcategory gara SQL ଇଞ୍ଜେକ୍ସନ geessa. CWE fayyadamuun rakkoo ibsuun gara CWE-89 geessa. Dadhabbii kana yeroo 06/04/2025 maxxanfameera. Odeeffannoon kun buufachuuf github.com irratti qoodameera. Dogoggorri kun akka CVE-2025-5655tti beekama. Yaaliin weeraraa fageenya irraa jalqabamuu ni danda'a. Faayidaaleen teeknikaa ni jiru. Waliigalatti, meeshaa balaa kana fayyadamuuf jiru. Qorannoo miidhaa (exploit) uummataaf ifoomameera fi fayyadamamuu danda'a. Amma, gatii ammee exploit might be approx. USD $0-$5k ta'uu danda'a. Akka ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee ibsameera. Carraa exploit kana github.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatii daldalaa dhoksaa tilmaamame $0-$5k ta'ee ture. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

3 ଆଡାପ୍ଟେସନ୍ · 97 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 06/04/2025 02:47 PM	ଅଦ୍ୟତନ 1/2 06/05/2025 02:10 PM	ଅଦ୍ୟତନ 2/2 06/11/2025 03:28 AM
software_vendor	PHPGurukul	PHPGurukul	PHPGurukul
software_name	Complaint Management System	Complaint Management System	Complaint Management System
software_version	2.0	2.0	2.0
software_file	/admin/edit-subcategory.php	/admin/edit-subcategory.php	/admin/edit-subcategory.php
software_argument	subcategory	subcategory	subcategory
vulnerability_cwe	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)
vulnerability_risk	2	2	2
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	L	L	L
cvss3_vuldb_i	L	L	L
cvss3_vuldb_a	L	L	L
cvss3_vuldb_e	P	P	P
cvss3_vuldb_rc	R	R	R
advisory_url	https://github.com/f1rstb100d/myCVE/issues/44	https://github.com/f1rstb100d/myCVE/issues/44	https://github.com/f1rstb100d/myCVE/issues/44
exploit_availability	1	1	1
exploit_publicity	1	1	1
exploit_url	https://github.com/f1rstb100d/myCVE/issues/44	https://github.com/f1rstb100d/myCVE/issues/44	https://github.com/f1rstb100d/myCVE/issues/44
source_cve	CVE-2025-5655	CVE-2025-5655	CVE-2025-5655
cna_responsible	VulDB	VulDB	VulDB
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_ci	P	P	P
cvss2_vuldb_ii	P	P	P
cvss2_vuldb_ai	P	P	P
cvss2_vuldb_e	POC	POC	POC
cvss2_vuldb_rc	UR	UR	UR
cvss4_vuldb_av	N	N	N
cvss4_vuldb_ac	L	L	L
cvss4_vuldb_ui	N	N	N
cvss4_vuldb_vc	L	L	L
cvss4_vuldb_vi	L	L	L
cvss4_vuldb_va	L	L	L
cvss4_vuldb_e	P	P	P
cvss2_vuldb_au	S	S	S
cvss2_vuldb_rl	ND	ND	ND
cvss3_vuldb_pr	L	L	L
cvss3_vuldb_rl	X	X	X
cvss4_vuldb_at	N	N	N
cvss4_vuldb_pr	L	L	L
cvss4_vuldb_sc	N	N	N
cvss4_vuldb_si	N	N	N
cvss4_vuldb_sa	N	N	N
cvss2_vuldb_basescore	6.5	6.5	6.5
cvss2_vuldb_tempscore	5.6	5.6	5.6
cvss3_vuldb_basescore	6.3	6.3	6.3
cvss3_vuldb_tempscore	5.7	5.7	5.7
cvss3_meta_basescore	6.3	6.3	7.1
cvss3_meta_tempscore	5.7	5.7	6.9
cvss4_vuldb_bscore	5.3	5.3	5.3
cvss4_vuldb_btscore	2.1	2.1	2.1
advisory_date	1748988000 (06/04/2025)	1748988000 (06/04/2025)	1748988000 (06/04/2025)
price_0day	$0-$5k	$0-$5k	$0-$5k
euvd_id		EUVD-2025-16985	EUVD-2025-16985
cve_nvd_summary			A vulnerability was found in PHPGurukul Complaint Management System 2.0. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument subcategory leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
cve_nvd_summaryes			Se encontró una vulnerabilidad en PHPGurukul Complaint Management System 2.0. Se ha clasificado como crítica. Afecta una parte desconocida del archivo /admin/edit-subcategory.php. La manipulación del argumento "subcategory" provoca una inyección SQL. Es posible iniciar el ataque de forma remota. Se ha hecho público el exploit y puede que sea utilizado.
cvss4_cna_av			N
cvss4_cna_ac			L
cvss4_cna_at			N
cvss4_cna_pr			L
cvss4_cna_ui			N
cvss4_cna_vc			L
cvss4_cna_vi			L
cvss4_cna_va			L
cvss4_cna_sc			N
cvss4_cna_si			N
cvss4_cna_sa			N
cvss4_cna_bscore			5.3
cvss3_cna_av			N
cvss3_cna_ac			L
cvss3_cna_pr			L
cvss3_cna_ui			N
cvss3_cna_s			U
cvss3_cna_c			L
cvss3_cna_i			L
cvss3_cna_a			L
cvss3_cna_basescore			6.3
cvss3_nvd_av			N
cvss3_nvd_ac			L
cvss3_nvd_pr			L
cvss3_nvd_ui			N
cvss3_nvd_s			U
cvss3_nvd_c			H
cvss3_nvd_i			H
cvss3_nvd_a			H
cvss3_nvd_basescore			8.8
cvss2_cna_av			N
cvss2_cna_ac			L
cvss2_cna_au			S
cvss2_cna_ci			P
cvss2_cna_ii			P
cvss2_cna_ai			P
cvss2_cna_basescore			6.5

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Might our Artificial Intelligence support you?

Check our Alexa App!