CVE-2025-4359 in Gym Management Systeminformation

Résumé

par MITRE • 06/05/2025

A vulnerability classified as critical was found in itsourcecode Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=delete_member. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

VulDB

Divulgation

06/05/2025

Modérer

accepté

Entrée

VDB-307477

CPE

prêt

Exploitation

Télécharger

EPSS

0.00438

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!