CNNVD-202506-2696 Information

Jun 20, 2025 cve

CNNVD ID

CNNVD-202506-2696

CVE-2025-6308

CNNVD Published: 2025-06-20

Description (Chinese)

PHPGurukul Emergency Ambulance Hiring Portal是PHPGurukul公司的一个紧急救护车租用门户。 PHPGurukul Emergency Ambulance Hiring Portal 1.0版本存在注入漏洞，该漏洞源于文件/admin/bwdates-request-report-details.php中参数fromdate/todate处理不当导致SQL注入，可能导致远程攻击。

Description (English)

PHPGurukul Emergency Ambulance Hiring Portal is an emergency ambulance rental portal for PHPGurukul. PHPGurukul Embulance Hiring Portal Version 1.0 has an injection loophole, which stems from the mishandling of the parameter fromdate/todate in document/admin/bwdates-request-report-details.php, which led to the injection of SQL and could lead to a remote attack.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

PHPGurukul

Published

2025-06-20

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.313308 https://github.com/f1rstb100d/myCVE/issues/68 https://vuldb.com/?id.313308 https://vuldb.com/?submit.595915 https://phpgurukul.com/ https://access.redhat.com/security/cve/cve-2025-6308

Share on: