CVE-2025-4058 – CVE-2025-4058 is a critical SQL injection vulne... (How to Fix)

Q: What is the severity of CVE-2025-4058?

CVE-2025-4058 has a CVSS score of 7.3 (HIGH). CVE-2025-4058 is a critical SQL injection vulnerability in Projectworlds Online Examination System 1.0 that allows remote attackers to execute arbitrary SQL commands via the Pat_BloodGroup1 parameter in Bloodgroop_process.php. This affects all deployments of version 1.0, potentially compromising the entire database and application. Organizations using this software for online examinations are at risk of data theft, manipulation, or complete system takeover.

📋 TL;DR

CVE-2025-4058 is a critical SQL injection vulnerability in Projectworlds Online Examination System 1.0 that allows remote attackers to execute arbitrary SQL commands via the Pat_BloodGroup1 parameter in Bloodgroop_process.php. This affects all deployments of version 1.0, potentially compromising the entire database and application. Organizations using this software for online examinations are at risk of data theft, manipulation, or complete system takeover.

💻 Affected Systems

Products:

Projectworlds Online Examination System

Versions: 1.0

Operating Systems: Any OS running PHP web server

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations of version 1.0 regardless of configuration. The Bloodgroop_process.php file appears to be part of the system's functionality.

📦 What is this software?

Online Examination System by Projectworlds

View all CVEs affecting Online Examination System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data manipulation, privilege escalation, and potential remote code execution on the underlying server.

🟠

Likely Case

Unauthorized access to sensitive examination data, student records, and administrative credentials, potentially leading to data exfiltration or system disruption.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and network segmentation preventing successful exploitation.

🌐 Internet-Facing: HIGH - The vulnerability is remotely exploitable and affects a web application component, making internet-facing deployments particularly vulnerable.

🏢 Internal Only: MEDIUM - Internal deployments are still vulnerable to insider threats or compromised internal systems, though attack surface is reduced.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details are publicly disclosed on GitHub, making this easily weaponizable. The SQL injection appears straightforward with minimal technical barriers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing custom fixes with parameterized queries and input validation.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement server-side validation to sanitize the Pat_BloodGroup1 parameter before processing

# Add to Bloodgroop_process.php before SQL execution:
$bloodGroup = filter_var($_POST['Pat_BloodGroup1'], FILTER_SANITIZE_STRING);
# Then use parameterized queries with prepared statements

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting Bloodgroop_process.php

# Example ModSecurity rule:
SecRule ARGS:Pat_BloodGroup1 "@detectSQLi" "id:1001,phase:2,deny,status:403,msg:'SQLi attempt detected'"

🧯 If You Can't Patch

Isolate the system behind a reverse proxy with strict input filtering and rate limiting
Implement network segmentation to restrict database access from the web application server

🔍 How to Verify

Check if Vulnerable:

Test the Bloodgroop_process.php endpoint with SQL injection payloads in the Pat_BloodGroup1 parameter and observe database errors or unexpected behavior

Check Version:

Check system documentation or admin panel for version information, or examine PHP files for version headers

Verify Fix Applied:

Attempt SQL injection after implementing fixes; successful protection should return proper error handling without database errors

📡 Detection & Monitoring

Log Indicators:

SQL syntax errors in web server logs
Unusual database queries from web application
Multiple failed login attempts following SQL errors

Network Indicators:

HTTP POST requests to Bloodgroop_process.php with SQL keywords in parameters
Unusual outbound database connections from web server

SIEM Query:

source="web_server.log" AND ("Bloodgroop_process.php" AND ("union" OR "select" OR "sleep" OR "benchmark"))

📊 Metadata

CVE ID: CVE-2025-4058

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.08% exploit probability (23.3th percentile)

Published: April 29, 2025

Last Updated: May 15, 2025

🔗 References

https://github.com/hhhanxx/attack/issues/2#issue-2998883562 Exploit,Issue Tracking,Third Party Advisory
https://vuldb.com/?ctiid.306495 Permissions Required,VDB Entry
https://vuldb.com/?id.306495 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.559354 Third Party Advisory,VDB Entry
https://github.com/hhhanxx/attack/issues/2#issue-2998883562 Exploit,Issue Tracking,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-4058, you might also want to check these: