A security flaw has been discovered in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d958. This issue affects some unknown processing of the file /edit.php. The manipulation results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be exploited. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. The vendor was contacted early about this disclosure but did not respond in any way.
References
| Link | Resource |
|---|---|
| https://github.com/woshinenbaba/CVE-/issues/1 | Exploit Issue Tracking Third Party Advisory |
| https://vuldb.com/?ctiid.334669 | Permissions Required VDB Entry |
| https://vuldb.com/?id.334669 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.701826 | Third Party Advisory VDB Entry |
Configurations
History
21 Jan 2026, 21:35
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Philipinho simple-php-blog
Philipinho |
|
| References | () https://github.com/woshinenbaba/CVE-/issues/1 - Exploit, Issue Tracking, Third Party Advisory | |
| References | () https://vuldb.com/?ctiid.334669 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.334669 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.701826 - Third Party Advisory, VDB Entry | |
| CPE | cpe:2.3:a:philipinho:simple-php-blog:*:*:*:*:*:*:*:* |
08 Dec 2025, 10:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-12-08 10:16
Updated : 2026-01-21 21:35
NVD link : CVE-2025-14227
Mitre link : CVE-2025-14227
CVE.ORG link : CVE-2025-14227
JSON object : View
Products Affected
philipinho
- simple-php-blog