CVE-2025-25354
- Reference to the description:
- Description:
- A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactnumber POST request parameter.
- Last updated date:
- 02/14/2025
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/14/2025