CVE Details
Basic Information
| Title | PHPGurukul Online Fire Reporting System edit-team.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-06-04T23:00:21.054Z |
| Last Seen |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | Online Fire Reporting System |
| Version | 1.2 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A SQL injection vulnerability was discovered in PHPGurukul’s Online Fire Reporting System version 1.2. This vulnerability affects the /admin/edit-team.php file and can be exploited remotely by manipulating the teamid argument. The exploit is publicly disclosed, posing a potential risk. |
|---|---|
| AI Severity | Medium |
| Vendor | PHPGurukul |
| Product | Online Fire Reporting System |
| Affected Version | 1.2 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-89, CWE-74 |
| Bulletin Family | |
| Source Data | PHPGurukul Online Fire Reporting System 1.2 |
Source Information
| Source Data | PHPGurukul Online Fire Reporting System 1.2 |
|---|---|
| Source Link |
Description
A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. This vulnerability affects unknown code of the file /admin/edit-team.php. The manipulation of the argument teamid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: 5.3 (MEDIUM)