SQL Injection Vulnerability in Complaint Management System by phpgurukul
CVE-2025-57147
7.5HIGH
What is CVE-2025-57147?
A SQL Injection vulnerability has been identified in phpgurukul's Complaint Management System version 2.0. This security flaw arises from inadequate input validation of several key parameters, including fullname, email, and contact number within the user registration functionality (user/registration.php). Exploitation of this vulnerability could allow an attacker to execute arbitrary SQL commands, potentially compromising the application's database integrity and exposing sensitive user information.