CVE-2025-4112 – PHPGurukul Student Record System SQL Injection Vulnerability

April 30, 2025

CVE ID : CVE-2025-4112

Published : April 30, 2025, 11:15 a.m. | 1 hour, 39 minutes ago

Description : A vulnerability was found in PHPGurukul Student Record System 3.20. It has been declared as critical. This vulnerability affects unknown code of the file /add-course.php. The manipulation of the argument course-short leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4113 – PHPGurukul Curfew e-Pass Management System SQL Injection

Next Article CVE-2025-4111 – PHPGurukul Pre-School Enrollment System SQL Injection Vulnerability

Highlights

CVE-2025-2773 – BEC Technologies Multiple Routers TCP Port 22 Command Injection Remote Code Execution Vulnerability

April 23, 2025

CVE ID : CVE-2025-2773

Published : April 23, 2025, 5:16 p.m. | 1 hour, 42 minutes ago

Description : BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of BEC Technologies Multiple Routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.

The specific flaw exists within the management interface, which listens on TCP port 22 by default. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-25903.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

July 2025 Patch Tuesday forecast: Take a break from the grind

July 7, 2025

UPERFECT Unify B5 Portable Monitor 1080P Display Review

June 10, 2025

Here’s exactly when you can play Grounded 2 — Xbox announced launch times for its release date, and the Game Pass survival game is coming in hot

July 25, 2025

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-4112 – PHPGurukul Student Record System SQL Injection Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

CVE-2025-43484 – Poly Clariti Manager Cross-Site Scripting (XSS)

Are Forgotten AD Service Accounts Leaving You at Risk?

CVE-2025-47710 – Drupal Enterprise MFA – TFA Authentication Bypass

CVE-2025-48113 – Broadstreet Stored Cross-site Scripting

CVE-2025-2773 – BEC Technologies Multiple Routers TCP Port 22 Command Injection Remote Code Execution Vulnerability

July 2025 Patch Tuesday forecast: Take a break from the grind

UPERFECT Unify B5 Portable Monitor 1080P Display Review

Here’s exactly when you can play Grounded 2 — Xbox announced launch times for its release date, and the Game Pass survival game is coming in hot

CVE-2025-4112 – PHPGurukul Student Record System SQL Injection Vulnerability

Related Posts