First published: Mon Mar 17 2025(Updated: )
A vulnerability classified as critical was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
PHPGurukul Banquet Booking System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-2382 is classified as a critical vulnerability.
CVE-2025-2382 is a SQL injection vulnerability.
CVE-2025-2382 can be exploited by manipulating the 'searchdata' argument in the /admin/booking-search.php file.
To fix CVE-2025-2382, ensure that proper input validation and prepared statements are implemented for the affected parameter.
CVE-2025-2382 affects the PHPGurukul Online Banquet Booking System version 1.0.