Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/30 6:13 a.m.16 views

CVE-2025-4004

A vulnerability was found in PHPGurukul COVID19 Testing Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. The attack can be initiated...

9.8CVSS7.5AI score0.00428EPSS
Exploits1References1
Circl
Circl
added 2025/04/28 9:41 a.m.9 views

CVE-2025-4004

creationtimestamp| type| source ---|---|--- 2025-04-28 09:41:02+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnuhxjx6wf2y 2025-04-28 09:52:49+00:00| seen| https://t.me/cvedetector/23885 2025-05-02 11:15:33+00:00| published-proof-of-concept|...

9.8CVSS7.2AI score0.00428EPSS
Exploits1References3
NVD
NVD
added 2025/04/28 6:15 a.m.23 views

CVE-2025-4004

A vulnerability was found in PHPGurukul COVID19 Testing Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. The attack can be initiated...

9.8CVSS0.00428EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/04/28 6:0 a.m.13 views

CVE-2025-4004 PHPGurukul COVID19 Testing Management System password-recovery.php sql injection

A vulnerability was found in PHPGurukul COVID19 Testing Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. The attack can be initiated...

7.5CVSS7.5AI score0.00428EPSS
Exploits1References5
CVE
CVE
added 2025/04/28 6:0 a.m.68 views

CVE-2025-4004

Summary (CVE-2025-4004): PHPGurukul COVID19 Testing Management System 1.0 has a SQL injection in /password-recovery.php when manipulating the contactno (and also username) parameter due to incomplete input validation. Exploitation is feasible remotely and has been disclosed. Evidence from multipl...

9.8CVSS7.5AI score0.00428EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/04/28 6:0 a.m.22 views

CVE-2025-4004 PHPGurukul COVID19 Testing Management System password-recovery.php sql injection

A vulnerability was found in PHPGurukul COVID19 Testing Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. The attack can be initiated...

7.5CVSS0.00428EPSS
Exploits1References5
Rows per page
Query Builder