CVE 8.8 HIGH

CVE-2025-70893_CVE-2025-70893

January 15, 2026 invoker category_cve
8.8 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1.0 within the adminprofile.php endpoint. The application fails to properly sanitize user-supplied input provided via the adminname parameter, allowing authenticated attackers to inject arbitrary SQL expressions.

AI Analysis

Time-based blind SQL Injection vulnerability in adminprofile.php endpoint

Basic Information

ID CVE-2025-70893
Source mitre
Published Jan 15, 2026 at 00:00
Modified Jan 15, 2026 at 21:22

Affected Product

Vendor PHPGurukul
Product Cyber Cafe Management System
Version v1.0
Affected Versions n/a n/a n/a

CWE Classification

CWE-89

AI Assessment

AI Score 8.8 / 10
AI Severity High
Vendor PHPGurukul
Product Cyber Cafe Management System
Version v1.0

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.