Login Sign Up

CVE-2025-2643

7.3 HIGH
SQL Injection

📋 TL;DR

This critical SQL injection vulnerability in PHPGurukul Art Gallery Management System 1.0 allows attackers to manipulate database queries through the arttype parameter in the admin panel. Attackers can potentially read, modify, or delete database content, including sensitive information. All installations of version 1.0 are affected.

💻 Affected Systems

Products:
  • PHPGurukul Art Gallery Management System
Versions: 1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Requires admin panel access but exploit is straightforward once authenticated

📦 What is this software?

Art Gallery Management System by Phpgurukul

View all CVEs affecting Art Gallery Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, authentication bypass, remote code execution, or complete system takeover

🟠

Likely Case

Unauthorized data access, privilege escalation, and potential data manipulation

🟢

If Mitigated

Limited impact if proper input validation and WAF rules are in place

🌐 Internet-Facing: HIGH - Attack can be initiated remotely without authentication
🏢 Internal Only: MEDIUM - Requires access to admin interface but could be exploited by malicious insiders

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit details are publicly available on GitHub, making this easily exploitable by attackers with basic SQL injection knowledge

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: https://phpgurukul.com/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing custom fixes with proper input validation and parameterized queries.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation and parameterized queries for the arttype parameter

WAF Rule Implementation

all

Deploy web application firewall rules to block SQL injection patterns

🧯 If You Can't Patch

  • Restrict access to /admin/edit-art-type-detail.php using IP whitelisting or authentication
  • Implement database monitoring to detect unusual SQL queries

🔍 How to Verify

Check if Vulnerable:

Test the /admin/edit-art-type-detail.php?editid=1 endpoint with SQL injection payloads in the arttype parameter

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection payloads no longer execute and return proper error handling

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in database logs
  • Multiple failed login attempts to admin panel
  • Requests to edit-art-type-detail.php with suspicious parameters

Network Indicators:

  • SQL injection patterns in HTTP requests
  • Unusual database connection patterns

SIEM Query:

source="web_logs" AND uri="/admin/edit-art-type-detail.php" AND (query="arttype" OR query LIKE "%SQL%" OR query LIKE "%UNION%" OR query LIKE "%SELECT%")

📊 Metadata

CVE ID: CVE-2025-2643
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.08% exploit probability (23.7th percentile)
Published: March 23, 2025
Last Updated: April 2, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-2643, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)