First published: Mon Mar 17 2025(Updated: )
A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been classified as critical. This affects an unknown part of the file /download-medical-cards.php. The manipulation of the argument searchdata leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Anujkumar Medical Card Generation System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-2378 has been classified as critical.
CVE-2025-2378 is categorized as an SQL injection vulnerability.
CVE-2025-2378 affects the file /download-medical-cards.php in the PHPGurukul Medical Card Generation System.
To fix CVE-2025-2378, ensure proper validation and sanitization of the input parameters, particularly the argument searchdata.
If exploited, CVE-2025-2378 allows an attacker to manipulate SQL queries, potentially leading to unauthorized data access or manipulation.