CVE-2025-45019 – PHPGurukul Park Ticketing Management System SQL Injection

April 30, 2025

CVE ID : CVE-2025-45019

Published : April 30, 2025, 2:15 p.m. | 2 hours, 42 minutes ago

Description : A SQL injection vulnerability was discovered in /add-foreigners-ticket.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the cprice POST request parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-45010 – PHPGurukul Park Ticketing Management System HTML Injection

Next Article CVE-2025-45015 – PHPGurukul Park Ticketing Management System Cross-Site Scripting (XSS)

Highlights

CVE-2025-3580 – Grafana Server Administrator Account Deletion Vulnerability

May 23, 2025

CVE ID : CVE-2025-3580

Published : May 23, 2025, 2:15 p.m. | 1 hour, 24 minutes ago

Description : An access control vulnerability was discovered in Grafana OSS where an Organization administrator could permanently delete the Server administrator account. This vulnerability exists in the DELETE /api/org/users/ endpoint.

The vulnerability can be exploited when:

1. An Organization administrator exists

2. The Server administrator is either:

– Not part of any organization, or
– Part of the same organization as the Organization administrator
Impact:

– Organization administrators can permanently delete Server administrator accounts

– If the only Server administrator is deleted, the Grafana instance becomes unmanageable

– No super-user permissions remain in the system

– Affects all users, organizations, and teams managed in the instance

The vulnerability is particularly serious as it can lead to a complete loss of administrative control over the Grafana instance.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-45019 – PHPGurukul Park Ticketing Management System SQL Injection

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

CVE-2025-32376 – Discourse DM Privilege Escalation Vulnerability

Ubuntu 25.10 Daily Builds Now Available to Download

CVE-2025-6029 – KIA Aftermarket Generic Smart Keyless Entry System Replay Attack

The Intersection of Agile and Accessibility – Maintaining Accessibility Momentum in Agile Roadmaps

CVE-2025-3580 – Grafana Server Administrator Account Deletion Vulnerability

CVE-2025-6512 – BRAIN2 Remote Command Execution Vulnerability

Flathub: Il Negozio di Applicazioni per GNU/Linux Supera i 3 Miliardi di Download

Shadow dropped or not, you can already save money on The Elder Scrolls 4: Oblivion Remastered for Steam

CVE-2025-45019 – PHPGurukul Park Ticketing Management System SQL Injection

Related Posts