CVE-2025-1578

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 23, 2025

Updated: Feb 28, 2025

CWE ID 89

CWE ID 74

Summary

CVE-2025-1578 is a critical vulnerability affecting the PHPGurukul Online Shopping Portal version 2.1. An unknown part of the file "/search-result.php" is vulnerable to SQL injection. The issue can be triggered by manipulating the argument "product," allowing remote attackers to initiate the exploit. Public disclosure of the exploit increases the risk of this vulnerability being exploited.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3nPJPl
https://www.cve.org/CVERecord?id=CVE-2025-1578
https://nvd.nist.gov/vuln/detail/CVE-2025-1578

Back to Vulnerability Database

CVE-2025-1578

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations