CVE Details
Basic Information
| Title | PHPGurukul Dairy Farm Shop Management System edit-company.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-07-14T08:44:06.390Z |
| Modified | 2025-07-14T08:44:06.390Z |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | Dairy Farm Shop Management System |
| Version | 1.3 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A SQL injection vulnerability exists in the edit-company.php file of PHPGurukul Dairy Farm Shop Management System version 1.3. This vulnerability allows remote attackers to inject arbitrary SQL commands by manipulating the companyname parameter, potentially leading to unauthorized data access or system compromise. The issue is considered critical as it is publicly disclosed and exploitable. |
|---|---|
| AI Severity | Medium |
| AI Vendor | PHPGurukul |
| AI Product | Dairy Farm Shop Management System |
| AI Version | 1.3 |
Affected Products
- PHPGurukul Dairy Farm Shop Management System 1.3
Additional Information
| CWE List | CWE-89, CWE-74 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as critical was found in PHPGurukul Dairy Farm Shop Management System 1.3. This vulnerability affects unknown code of the file edit-company.php. The manipulation of the argument companyname leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.