SQL Injection Vulnerability in PHPGurukul Old Age Home Management System
CVE-2025-3352

6.9MEDIUM

Key Information:

Vendor: PHPgurukul
Status: Old Age Home Management System
Vendor: CVE Published:; 7 April 2025

Badges

👾 Exploit Exists

What is CVE-2025-3352?

A vulnerability exists in PHPGurukul's Old Age Home Management System version 1.0, specifically within the file /admin/edit-scdetails.php. This security flaw allows for SQL injection through manipulation of the 'contnum' argument, potentially enabling remote attackers to execute arbitrary SQL commands. The exploit has been publicly disclosed, posing risks to the integrity and confidentiality of the affected system's data.

Affected Version(s)

Old Age Home Management System 1.0

References

https://vuldb.com/?id.303566

vdb-entrytechnical-description

https://vuldb.com/?ctiid.303566

signaturepermissions-required

https://vuldb.com/?submit.552171

third-party-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Apr 7, 2025
Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Apr 6, 2025

Credit

n0name (VulDB User)

PHPgurukul