CVE-2025-4358 in Company Visitor Management Systeminfo

Zusammenfassung

von MITRE • 06.05.2025

A vulnerability classified as critical has been found in PHPGurukul Company Visitor Management System 2.0. Affected is an unknown function of the file /admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Zuständig

VulDB

Veröffentlichung

06.05.2025

Moderieren

akzeptiert

Eintrag

VDB-307476

CPE

bereit

Exploit

Download

EPSS

0.00438

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!