13Şub
CVE-2025-25389 | PHPGurukul Land Record System 1.0 POST Request Parameter forgot-password.php contactno sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/forgot-password.php of the component POST Request Parameter Handler. The manipulation of the argument contactno leads to sql injection. This vulnerability is handled as CVE-2025-25389. The attack may be launched remotely. There is no exploit available.