CVE Details
Basic Information
| Title | PHPGurukul Student Result Management System editmyexp.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-06-04T17:31:06.646Z |
| Last Seen |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | Student Result Management System |
| Version | 1.3 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical SQL injection vulnerability was discovered in PHPGurukul Student Result Management System version 1.3. This vulnerability affects the /editmyexp.php file and can be exploited remotely, potentially allowing unauthorized access to sensitive data. |
|---|---|
| AI Severity | Medium |
| Vendor | PHPGurukul |
| Product | Student Result Management System |
| Affected Version | 1.3 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-89, CWE-74 |
| Bulletin Family | |
| Source Data | PHPGurukul Student Result Management System 1.3 |
Source Information
| Source Data | PHPGurukul Student Result Management System 1.3 |
|---|---|
| Source Link |
Description
A vulnerability classified as critical was found in PHPGurukul Student Result Management System 1.3. This vulnerability affects unknown code of the file /editmyexp.php. The manipulation of the argument emp1ctc leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: 6.9 (MEDIUM)