A vulnerability classified as critical was found in PHPGurukul Art Gallery Management System 1.1. This vulnerability affects unknown code of the file /admin/changeimage2.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/f1rstb100d/myCVE/issues/87 | Exploit Third Party Advisory |
https://phpgurukul.com/ | Product |
https://vuldb.com/?ctiid.313408 | Permissions Required |
https://vuldb.com/?id.313408 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.598230 | Third Party Advisory VDB Entry |
https://github.com/f1rstb100d/myCVE/issues/87 | Exploit Third Party Advisory |
Configurations
History
24 Jun 2025, 14:43
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:phpgurukul:art_gallery_management_system:1.1:*:*:*:*:*:*:* | |
First Time |
Phpgurukul art Gallery Management System
Phpgurukul |
|
References | () https://github.com/f1rstb100d/myCVE/issues/87 - Exploit, Third Party Advisory | |
References | () https://phpgurukul.com/ - Product | |
References | () https://vuldb.com/?ctiid.313408 - Permissions Required | |
References | () https://vuldb.com/?id.313408 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.598230 - Third Party Advisory, VDB Entry |
23 Jun 2025, 15:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/f1rstb100d/myCVE/issues/87 - | |
Summary |
|
21 Jun 2025, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-21 19:15
Updated : 2025-06-24 14:43
NVD link : CVE-2025-6414
Mitre link : CVE-2025-6414
CVE.ORG link : CVE-2025-6414
JSON object : View
Products Affected
phpgurukul
- art_gallery_management_system