EUVD-2025-18443Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
6DescriptionCVE.org
A vulnerability was found in PHPGurukul Hostel Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /includes/login-hm.inc.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
Critical SQL injection vulnerability in PHPGurukul Hostel Management System 1.0 affecting the login functionality (/includes/login-hm.inc.php). An unauthenticated attacker can manipulate the Username parameter to execute arbitrary SQL queries remotely, potentially compromising data confidentiality, integrity, and availability. Public exploit disclosure and active exploitation potential significantly elevate real-world risk despite a moderate CVSS score of 7.3.
Technical ContextAI
The vulnerability exists in PHPGurukul Hostel Management System 1.0, a PHP-based web application for hostel administration. The root cause is classified under CWE-74 (Improper Neutralization of Special Elements in Output), specifically manifesting as SQL injection in the login module. The /includes/login-hm.inc.php file fails to properly sanitize or parameterize the Username input parameter before incorporating it into SQL queries. This allows attackers to inject malicious SQL syntax (e.g., ' OR '1'='1) to bypass authentication, extract sensitive data, or modify database contents. The vulnerability affects the authentication layer, a critical trust boundary in any web application.
RemediationAI
Immediate actions: (1) Apply input validation to the Username parameter—use allowlist-based validation (alphanumeric + specific symbols only) and enforce length limits; (2) Implement parameterized queries or prepared statements in /includes/login-hm.inc.php to separate SQL logic from data; (3) Apply Web Application Firewall (WAF) rules to detect and block SQL injection patterns (e.g., quotes, UNION, SELECT keywords in login parameters); (4) Consider upgrading to a newer version of PHPGurukul if available, or migrate to maintained hostel management solutions; (5) Conduct a security audit of all authentication-related code in the application. No official vendor patch is currently available; coordinate with PHPGurukul maintainers for a security update. Short-term workaround: disable the application or restrict access via network controls until patched.
More from same product – last 7 days
Authentication bypass in Discuz! X5.0 releases 20260320 through 20260501 allows unauthenticated remote attackers to acce
Authenticated remote code execution in Discuz! X5.0 releases 20260320 through 20260501 allows administrators to chain a
Unauthenticated PHP Object Injection in the Happyforms WordPress plugin (versions <= 1.26.13) allows remote attackers to
Unauthenticated PHP Object Injection in the Broadcast Live Video WordPress plugin (versions prior to 7.1.3) allows remot
Unauthenticated PHP object injection in the WordPress plugin 'Integration for Keap/Infusionsoft and Contact Form 7, WPFo
Share
External POC / Exploit Code
Leaving vuln.today