CVE-2025-4152 – PHPGurukul Online Birth Certificate System SQL Injection Vulnerability

May 1, 2025

CVE ID : CVE-2025-4152

Published : May 1, 2025, 6:15 a.m. | 1 hour, 56 minutes ago

Description : A vulnerability classified as critical has been found in PHPGurukul Online Birth Certificate System 1.0. Affected is an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument fromdate leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4153 – PHPGurukul Park Ticketing Management System SQL Injection Vulnerability

Next Article CVE-2025-4151 – PHPGurukul Curfew e-Pass Management System SQL Injection Vulnerability

Highlights

CVE-2025-4539 – Hainan ToDesk DLL File Parser Uncontrolled Search Path Vulnerability

May 11, 2025

CVE ID : CVE-2025-4539

Published : May 11, 2025, 11:15 a.m. | 1 hour, 12 minutes ago

Description : A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This vulnerability affects unknown code in the library profapi.dll of the component DLL File Parser. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2025-4152 – PHPGurukul Online Birth Certificate System SQL Injection Vulnerability

⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More

46,000+ Grafana Instances Exposed to Malicious Account Takeover Attacks

Clair Obscur: Expedition 33 release date — Launch times and when it comes out in your time zone

CVE-2024-13009 – Eclipse Jetty Gzip Buffer Release Vulnerability

CVE-2025-43026 – HP Support Assistant Privilege Escalation Vulnerability

Il laboratorio Open Source dell’Oregon State University rischia la chiusura: appello urgente alla comunità!

CVE-2025-4539 – Hainan ToDesk DLL File Parser Uncontrolled Search Path Vulnerability

CVE-2025-4716 – Campcodes Sales and Inventory System SQL Injection Vulnerability

Brisa Framework v0.2.11

How to Create Decoy File System in Linux Using FUSE

CVE-2025-4152 – PHPGurukul Online Birth Certificate System SQL Injection Vulnerability

Related Posts