CVE-2025-4028 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

April 28, 2025

CVE ID : CVE-2025-4028

Published : April 28, 2025, 5:15 p.m. | 1 hour, 50 minutes ago

Description : A vulnerability has been found in PHPGurukul COVID19 Testing Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4029 – Apache Code-projects Personal Diary Stack-based Buffer Overflow Vulnerability

Next Article CVE-2024-32499 – Newforma Project Center Server Remote Code Execution Vulnerability

Highlights

CVE-2025-4231 – Palo Alto Networks PAN-OS Command Injection Vulnerability

June 12, 2025

CVE ID : CVE-2025-4231

Published : June 13, 2025, 12:15 a.m. | 1 hour, 47 minutes ago

Description : A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform actions as the root user.

The attacker must have network access to the management web interface and successfully authenticate to exploit this issue.

Cloud NGFW and Prisma Access are not impacted by this vulnerability.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

6 registry tweaks every tech-savvy user must apply on Windows 11

Here’s why network infrastructure is vital to maximizing your company’s AI adoption

The AI video tool behind the most viral social trends right now

Got a new password manager? How to clean up the password mess you left in the cloud

Right Invoicing App for iPhone: InvoiceTemple

Right Invoicing App for iPhone: InvoiceTemple

Tunnel Run game in 170 lines of pure JS

Integrating Drupal with Salesforce SSO via SAML and Dynamic User Sync

Windows 11 24H2 tests toggle to turn off Recommended feed in the Start menu

Windows 11 24H2 tests toggle to turn off Recommended feed in the Start menu

User calls Windows 11 “pure horror,” Microsoft says it’s listening to feedback

John the Ripper is an advanced offline password cracker

CVE-2025-4028 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads

I replaced my Pixel 9 Pro XL with the Pixel 9a – and it’s good news for power users

Sweden says it is under cyber attack

It swivels, twists, and has 3 connectors – is this ‘the one cable to rule them all’?

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

CVE-2025-4231 – Palo Alto Networks PAN-OS Command Injection Vulnerability

Operating System Vulnerabilities, Exploits and Insecurity

Assiio fir nertoxize services

CVE-2025-23178 – Apache HTTP Server SSL/TLS Channel Hijacking Vulnerability

CVE-2025-4028 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

Related Posts