Unknown · Biggidroid Simple Php Cms · CVE-2025-15263
**Name of the Vulnerable Software and Affected Versions**
BiggiDroid Simple PHP CMS version 1.0
**Description**
A flaw exists in BiggiDroid Simple PHP CMS 1.0, specifically within the Admin Login component. Manipulation of the `Username` argument in the `/admin/login.php` file can lead to SQL injection. This attack can be carried out remotely. The exploit for this issue has been publicly released.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.