PT-2026-2577 · Phpgurukul · Phpgurukul News Portal Project
Published
2026-01-13
·
Updated
2026-01-13
·
CVE-2025-69991
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
phpgurukul News Portal Project version 4.1
Description
The phpgurukul News Portal Project is affected by a SQL Injection issue in the
check availablity.php file. This allows for potential unauthorized database access or modification. The vulnerable parameter is not specified.Recommendations
Apply updates to address the SQL Injection issue in the
check availablity.php file. As a temporary workaround, restrict access to the check availablity.php file.Exploit
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Phpgurukul News Portal Project