CVE-2025-6413 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

June 21, 2025

CVE ID : CVE-2025-6413

Published : June 21, 2025, 6:15 p.m. | 35 minutes ago

Description : A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1. This affects an unknown part of the file /admin/changeimage1.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleEncoding Explorer transforms characters into binary

Next Article CVE-2025-6412 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

Highlights

CVE-2025-53887 – Directus OpenAPI Spec Version Disclosure

July 15, 2025

CVE ID : CVE-2025-53887

Published : July 15, 2025, 12:15 a.m. | 2 hours, 36 minutes ago

Description : Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0 and prior to version 11.9.0, the exact Directus version number is incorrectly being used as OpenAPI Spec version this means that it is being exposed by the `/server/specs/oas` endpoint without authentication. With the exact version information a malicious attacker can look for known vulnerabilities in Directus core or any of its shipped dependencies in that specific running version. Version 11.9.0 fixes the issue.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Urgent GitLab Security Alert: High-Severity Flaws Allow Account Takeover & Code Injection!

June 12, 2025

CVE-2025-6120 – Assimp Heap-Based Buffer Overflow Vulnerability

June 16, 2025

CVE-2024-13307 – Reales WP Real Estate WordPress Theme Unauthenticated File Deletion and Authorization Bypass Vulnerability

April 24, 2025

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2025-6413 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-48275 – Dastan800 Visual Header Missing Authorization Vulnerability

CVE-2025-37998 – Openvswitch Netlink Attribute Parsing Vulnerability

Explore the best of GitHub Universe: 9 spaces built to spark creativity, connection, and joy

CVE-2025-46749 – Apache Struts XSS

CVE-2025-53887 – Directus OpenAPI Spec Version Disclosure

Urgent GitLab Security Alert: High-Severity Flaws Allow Account Takeover & Code Injection!

CVE-2025-6120 – Assimp Heap-Based Buffer Overflow Vulnerability

CVE-2024-13307 – Reales WP Real Estate WordPress Theme Unauthenticated File Deletion and Authorization Bypass Vulnerability

CVE-2025-6413 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

Related Posts