CVE Details
Basic Information
| Title | PHPGurukul Dairy Farm Shop Management System view-invoice.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-07-14T09:14:08.437Z |
| Modified | 2025-07-14T09:14:08.437Z |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | Dairy Farm Shop Management System |
| Version | 1.3 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A critical SQL injection vulnerability was found in PHPGurukul Dairy Farm Shop Management System version 1.3. This vulnerability allows remote attackers to inject malicious SQL code, potentially leading to data breaches and system compromise. The issue has been publicly disclosed and could be exploited by malicious actors. |
|---|---|
| AI Severity | High |
| AI Vendor | PHPGurukul |
| AI Product | Dairy Farm Shop Management System |
| AI Version | 1.3 |
Affected Products
- PHPGurukul Dairy Farm Shop Management System 1.3
Additional Information
| CWE List | CWE-89, CWE-74 |
|---|---|
| Source | VulDB |
Description
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file view-invoice.php. The manipulation of the argument invid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.