Login Sign Up

CVE-2025-2683

7.3 HIGH
SQL Injection

📋 TL;DR

This critical SQL injection vulnerability in PHPGurukul Bank Locker Management System 1.0 allows attackers to manipulate database queries via the mobilenumber parameter in profile.php. Attackers can potentially access, modify, or delete sensitive banking data including customer information and locker details. Organizations using this specific software version are affected.

💻 Affected Systems

Products:
  • PHPGurukul Bank Locker Management System
Versions: 1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Affects systems with profile.php accessible and mobilenumber parameter exposed.

📦 What is this software?

Bank Locker Management System by Phpgurukul

View all CVEs affecting Bank Locker Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, financial fraud, unauthorized locker access, and potential system takeover.

🟠

Likely Case

Unauthorized access to sensitive customer data, financial information exposure, and potential data manipulation.

🟢

If Mitigated

Limited impact with proper input validation, database permissions, and network segmentation in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit details publicly disclosed on GitHub, requires access to profile.php endpoint.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified

Vendor Advisory: https://phpgurukul.com/

Restart Required: No

Instructions:

No official patch available. Contact vendor for updated version or apply manual fixes.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add proper input validation and parameterized queries to profile.php

Edit profile.php to use prepared statements: $stmt = $conn->prepare('SELECT * FROM users WHERE mobilenumber = ?'); $stmt->bind_param('s', $mobilenumber);

Web Application Firewall Rules

all

Block SQL injection patterns targeting profile.php

Add WAF rule: deny requests to /profile.php containing SQL keywords in mobilenumber parameter

🧯 If You Can't Patch

  • Isolate the system from internet access and restrict to internal network only
  • Implement strict network segmentation and monitor all database access attempts

🔍 How to Verify

Check if Vulnerable:

Test profile.php endpoint with SQL injection payloads in mobilenumber parameter

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Verify prepared statements are implemented and test with SQL injection payloads

📡 Detection & Monitoring

Log Indicators:

  • Unusual database queries from profile.php
  • Multiple failed login attempts with SQL patterns
  • Unexpected database error messages

Network Indicators:

  • Unusual traffic patterns to profile.php endpoint
  • SQL keywords in URL parameters

SIEM Query:

source="web_logs" AND url="/profile.php" AND (param="mobilenumber" AND value CONTAINS "UNION" OR "SELECT" OR "INSERT" OR "DELETE")

📊 Metadata

CVE ID: CVE-2025-2683
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.11% exploit probability (29.7th percentile)
Published: March 24, 2025
Last Updated: March 27, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-2683, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)