CVE-2025-70893

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1.0 within the adminprofile.php endpoint. The application fails to properly sanitize user-supplied input provided via the adminname parameter, allowing authenticated attackers to inject arbitrary SQL expressions.

efekaanakkar/Cyber-Cafe-Management-System-CVEs
efekaanakkar/Cyber-Cafe-Management-System-CVEs
GitHubGitHub