CVE-2025-5370 – PHPGurukul News Portal SQL Injection Vulnerability

CVE ID : CVE-2025-5370

Published : May 31, 2025, 6:15 a.m. | 1 hour, 49 minutes ago

Description : A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. Affected by this vulnerability is an unknown functionality of the file /admin/forgot-password.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…