A vulnerability classified as critical was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/aionman/cve/issues/5 | Exploit Issue Tracking Third Party Advisory |
https://phpgurukul.com/ | Product |
https://vuldb.com/?ctiid.299881 | VDB Entry Permissions Required |
https://vuldb.com/?id.299881 | VDB Entry Third Party Advisory |
https://vuldb.com/?submit.515911 | Third Party Advisory VDB Entry |
Configurations
History
26 May 2025, 02:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/aionman/cve/issues/5 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://phpgurukul.com/ - Product | |
References | () https://vuldb.com/?ctiid.299881 - VDB Entry, Permissions Required | |
References | () https://vuldb.com/?id.299881 - VDB Entry, Third Party Advisory | |
References | () https://vuldb.com/?submit.515911 - Third Party Advisory, VDB Entry | |
CPE | cpe:2.3:a:phpgurukul:online_banquet_booking_system:1.0:*:*:*:*:*:*:* | |
Summary |
|
|
First Time |
Phpgurukul online Banquet Booking System
Phpgurukul |
17 Mar 2025, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-03-17 15:15
Updated : 2025-05-26 02:10
NVD link : CVE-2025-2382
Mitre link : CVE-2025-2382
CVE.ORG link : CVE-2025-2382
JSON object : View
Products Affected
phpgurukul
- online_banquet_booking_system