First published: Sun Mar 23 2025(Updated: )
A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.0. This affects an unknown part of the file /admin/view-enquiry-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
PHPGurukul Art Gallery Management System | ||
PHPGurukul Art Gallery Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-2648 is classified as a critical vulnerability.
CVE-2025-2648 is related to SQL injection vulnerabilities.
CVE-2025-2648 affects PHPGurukul Art Gallery Management System version 1.0.
CVE-2025-2648 can be exploited remotely by manipulating the argument viewid in the file /admin/view-enquiry-detail.php.
Fixing CVE-2025-2648 involves sanitizing user input and implementing parameterized queries in the affected PHP file.