CVE-2025-4907 Information

Description

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/f1rstb100d/myCVE/issues/22 https://phpgurukul.com/ https://vuldb.com/?ctiid.309464 https://vuldb.com/?id.309464 https://vuldb.com/?submit.578194 https://github.com/f1rstb100d/myCVE/issues/22