CVE-2025-4304 – PHPGurukul Cyber Cafe Management System SQL Injection

May 5, 2025

CVE ID : CVE-2025-4304

Published : May 6, 2025, 2:15 a.m. | 1 hour, 19 minutes ago

Description : A vulnerability, which was classified as critical, was found in PHPGurukul Cyber Cafe Management System 1.0. This affects an unknown part of the file /adminprofile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4305 – Kefaming Mayi Unrestricted File Upload Vulnerability

Next Article CVE-2024-39442 – Sprd SSense Service Missing Permission Check Vulnerability

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

OneDrive user locked out of “30 years worth of photos and work” without any support — calls Microsoft a “Kafkaesque black hole”

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Community News: Latest PECL Releases (06.24.2025)

JSON module scripts are now Baseline Newly Available

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

CVE-2025-4304 – PHPGurukul Cyber Cafe Management System SQL Injection

Multiple vulnerabilities in Sitecore CMS | Kaspersky official blog

Don’t panic, but it’s only a matter of time before critical ‘CitrixBleed 2’ is under attack

PowerDNS DNSdist Vulnerability Let Attackers Cause Denial of Service Condition

Stream A Minecraft Movie at home right now (as long as you’re in the U.S.) and have your own “Chicken Jockey” moment whenever you like

CVE-2025-6492 – MarkText Regular Expression Complexity Remote Vulnerability

Hollow Knight: Silksong boldly teases DLC before even giving a release date, and fans are poking fun to hide the pain: “Sure hope this DLC doesn’t turn into a full fledged game that takes 8 years to develop”

CISA Alert: Critical Flaws in Consilium Safety CS5000 Fire Panel Could Enable Remote Takeover, No Patch

CVE-2025-5145 – Netcore Query String Handler Remote Command Injection Vulnerability

How Does User Experience (UX) Impact On-Page SEO?

CVE-2025-5603 – Campcodes Hospital Management System SQL Injection Vulnerability

CVE-2025-4304 – PHPGurukul Cyber Cafe Management System SQL Injection

Related Posts