A vulnerability was found in SourceCodester Best Online News Portal 1.0. It has been classified as critical. Affected is an unknown function of the file /search.php. The manipulation of the argument searchtitle leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
References
| Link | Resource |
|---|---|
| https://github.com/Lena-lyy/SQL/issues/4 | Exploit Issue Tracking Third Party Advisory |
| https://vuldb.com/?ctiid.309030 | Permissions Required Third Party Advisory VDB Entry |
| https://vuldb.com/?id.309030 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.570677 | Third Party Advisory VDB Entry |
| https://www.sourcecodester.com/ | Product |
| https://github.com/Lena-lyy/SQL/issues/4 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
17 Jun 2026, 09:33
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/Lena-lyy/SQL/issues/4 - Exploit, Issue Tracking, Third Party Advisory |
27 May 2025, 19:51
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Mayurik
Mayurik best Online News Portal |
|
| CPE | cpe:2.3:a:mayurik:best_online_news_portal:1.0:*:*:*:*:*:*:* | |
| References | () https://github.com/Lena-lyy/SQL/issues/4 - Exploit, Third Party Advisory, Issue Tracking | |
| References | () https://vuldb.com/?ctiid.309030 - Permissions Required, Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?id.309030 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.570677 - Third Party Advisory, VDB Entry | |
| References | () https://www.sourcecodester.com/ - Product |
16 May 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
|
| References | () https://github.com/Lena-lyy/SQL/issues/4 - |
15 May 2025, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-05-15 23:15
Updated : 2026-06-17 09:33
NVD link : CVE-2025-4728
Mitre link : CVE-2025-4728
CVE.ORG link : CVE-2025-4728
JSON object : View
Products Affected
mayurik
- best_online_news_portal
