CVE-2025-2736

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Mar 25, 2025

Updated: Mar 27, 2025

CWE ID 787

Summary

CVE-2025-2736 is a critical vulnerability identified in the PHPGurukul Old Age Home Management System 1.0. The issue lies in an unknown functionality of the file /admin/bwdates-report-details.php, which is susceptible to SQL injection. The manipulation of the 'fromdate' argument can lead to this vulnerability, allowing remote attacks. The exploit for this vulnerability has been disclosed, increasing the risk of its exploitation. Further investigation suggests that other parameters might also be affected.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FreeType

Affected Vendors

Freetype

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3mC-K4
https://www.cve.org/CVERecord?id=CVE-2025-2736
https://nvd.nist.gov/vuln/detail/CVE-2025-2736

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners