CVE-2025-5561 – PHPGurukul Curfew e-Pass Management System SQL Injection Vulnerability

June 4, 2025

CVE ID : CVE-2025-5561

Published : June 4, 2025, 5:15 a.m. | 2 hours, 18 minutes ago

Description : A vulnerability was found in PHPGurukul Curfew e-Pass Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5539 – WordPress WP Easy Contact Stored Cross-Site Scripting

Next Article CVE-2025-20996 – Samsung Smart Switch Authorization Bypass

Highlights

CVE-2025-48374 – Zot Keycloak Client Secret Disclosure

May 22, 2025

CVE ID : CVE-2025-48374

Published : May 22, 2025, 9:15 p.m. | 1 hour, 36 minutes ago

Description : zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 (corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f), when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout logs for an example at container startup. Version 2.1.3 (corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f) fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

I finally gave NotebookLM my full attention – and it really is a total game changer

Google Chrome for iOS now lets you switch between personal and work accounts

How the Trump administration changed AI: A timeline

Download your photos before AT&T shuts down its cloud storage service permanently

Laravel Live Denmark

Laravel Live Denmark

The July 2025 Laravel Worldwide Meetup is Today

Livewire Security Vulnerability

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Halo and Half-Life combine in wild new mod, bringing two of my favorite games together in one — here’s how to play, and how it works

Surprise! The iconic Roblox ‘oof’ sound is back — the beloved meme makes “a comeback so good it hurts” after three years of licensing issues

CVE-2025-5561 – PHPGurukul Curfew e-Pass Management System SQL Injection Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

CVE-2025-46577 – GoldenDB Database SQL Injection Vulnerability

CVE-2025-6369 – D-Link DIR-619L Stack-Based Buffer Overflow Vulnerability

Dark Web No Longer Safe Haven: 270 Arrested in Global Law Enforcement Raid

Smarter Decisions Ahead: Predictive Analytics for Sales Forecasting & Inventory Mastery📈

CVE-2025-48374 – Zot Keycloak Client Secret Disclosure

CVE-2025-20978 – PENUP Privilege Escalation Vulnerability

CVE-2024-52588 – Strapi SSRF Vulnerability

Collaboration: The Most Underrated UX Skill No One Talks About

CVE-2025-5561 – PHPGurukul Curfew e-Pass Management System SQL Injection Vulnerability

Related Posts