CVE-2025-4226

🗓️ 03 May 2025 11:00:09Reported by VulDBType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 57 Views🌐 WEB

Critical vulnerability in PHPGurukul Cyber Cafe Management System allows remote SQL injection attack.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-4226	3 May 202511:18	–	circl
CNNVD	PHPGurukul Cyber Cafe Management System SQL注入漏洞	3 May 202500:00	–	cnnvd
CNVD	Cyber Cafe Management System add-computer.php File SQL Injection Vulnerability	13 May 202500:00	–	cnvd
Cvelist	CVE-2025-4226 PHPGurukul/Campcodes Cyber Cafe Management System add-computer.php sql injection	3 May 202511:00	–	cvelist
EUVD	EUVD-2025-13364	3 Oct 202520:07	–	euvd
NVD	CVE-2025-4226	3 May 202511:15	–	nvd
Positive Technologies	PT-2025-18942 · Unknown · Phpgurukul Cyber Cafe Management System	3 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-4226	5 May 202511:10	–	redhatcve
Vulnrichment	CVE-2025-4226 PHPGurukul/Campcodes Cyber Cafe Management System add-computer.php sql injection	3 May 202511:00	–	vulnrichment

NVD

Vulners

Node

phpgurukul cyber_cafe_management_systemMatch1.0

[
  {
    "vendor": "PHPGurukul",
    "product": "Cyber Cafe Management System",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Campcodes",
    "product": "Cyber Cafe Management System",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/diyuzhishen/mycve/issues/2
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
compname	query param	/add-computer.php	SQL injection in compname and comploc parameters leading to remote exploitation	CWE-89, CWE-74
comploc	query param	/add-computer.php	SQL injection in compname and comploc parameters leading to remote exploitation	CWE-89, CWE-74

30 May 2025 10:15Current

8.1High risk

Vulners AI Score8.1

CVSS 3.17.3 - 9.8

CVSS 46.9

CVSS 27.5

CVSS 37.3

EPSS0.00303

SSVC