CVE-2025-4785 Information

Description

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user-profile.php. The manipulation of the argument fullname/contactnumber leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/f1rstb100d/myCVE/issues/10 https://github.com/f1rstb100d/myCVE/issues/9 https://github.com/f1rstb100d/myCVE/issues/9 https://phpgurukul.com/ https://vuldb.com/?ctiid.309086 https://vuldb.com/?id.309086 https://vuldb.com/?submit.572264