Login Sign Up

CVE-2025-0843

7.3 HIGH
SQL Injection Authentication Bypass

📋 TL;DR

CVE-2025-0843 is a critical SQL injection vulnerability in the needyamin Library Card System 1.0 admin panel. Attackers can exploit this by manipulating email/password parameters in admindashboard.php to execute arbitrary SQL commands, potentially bypassing authentication or accessing sensitive data. All users of this specific software version are affected.

💻 Affected Systems

Products:
  • needyamin Library Card System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects the admin panel component specifically through admindashboard.php file.

📦 What is this software?

Library Card System by Needyamin

View all CVEs affecting Library Card System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise including admin account takeover, database exfiltration, and potential remote code execution via SQL injection.

🟠

Likely Case

Authentication bypass leading to unauthorized admin access, data theft from the library database, and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or failed login attempts.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit details are publicly available on security research blogs, making this easily exploitable by attackers with basic SQL injection knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing custom fixes with parameterized queries.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation and parameterized queries for email and password fields in admindashboard.php

Web Application Firewall Rules

all

Deploy WAF rules to block SQL injection patterns targeting the admin login endpoint

🧯 If You Can't Patch

  • Isolate the admin panel behind VPN or internal network only
  • Implement rate limiting and monitoring on login attempts

🔍 How to Verify

Check if Vulnerable:

Test the admin login form with SQL injection payloads like ' OR '1'='1 in email/password fields

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Attempt SQL injection tests after implementing parameterized queries and verify they fail

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed login attempts with SQL keywords
  • Unusual database query patterns from web server

Network Indicators:

  • HTTP POST requests to admindashboard.php containing SQL injection patterns

SIEM Query:

source="web_logs" AND uri="/admindashboard.php" AND (request_body CONTAINS "' OR" OR request_body CONTAINS "UNION SELECT" OR request_body CONTAINS "--")

📊 Metadata

CVE ID: CVE-2025-0843
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.13% exploit probability (33th percentile)
Published: January 29, 2025
Last Updated: February 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-0843, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)