A vulnerability, which was classified as critical, has been found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/Pjwww13447/pjwww/issues/5 | Exploit Issue Tracking Third Party Advisory |
https://phpgurukul.com/ | Product |
https://vuldb.com/?ctiid.309269 | Permissions Required VDB Entry |
https://vuldb.com/?id.309269 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.573886 | Third Party Advisory VDB Entry |
Configurations
History
04 Jun 2025, 16:08
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-05-16 22:15
Updated : 2025-06-04 16:08
NVD link : CVE-2025-4812
Mitre link : CVE-2025-4812
CVE.ORG link : CVE-2025-4812
JSON object : View
Products Affected
phpgurukul
- human_metapneumovirus