CVE-2025-6911

Name of the Vulnerable Software and Affected Versions: PHPGurukul Student Record System version 3.2

Description: A critical vulnerability was found in the PHPGurukul Student Record System. This issue affects unknown code of the file /manage-subjects.php. The manipulation of the argument del leads to SQL injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations: For PHPGurukul Student Record System version 3.2, as a temporary workaround, consider disabling access to the /manage-subjects.php file until a patch is available. Restrict the manipulation of the del argument to minimize the risk of SQL injection exploitation.