Login Sign Up

CVE-2025-5650

7.3 HIGH
SQL Injection

📋 TL;DR

A critical SQL injection vulnerability in 1000projects Online Notice Board 1.0 allows remote attackers to execute arbitrary SQL commands via the fname parameter in register.php. This could lead to unauthorized data access, modification, or deletion. All users running this software are affected.

💻 Affected Systems

Products:
  • 1000projects Online Notice Board
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations with register.php accessible are vulnerable. The vulnerability is in the core application code.

📦 What is this software?

Online Notice Board by 1000projects

View all CVEs affecting Online Notice Board →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, and potential remote code execution if database functions allow it.

🟠

Likely Case

Unauthorized access to sensitive user data, administrative credentials theft, and database manipulation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or limited data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub. SQL injection is a well-understood attack vector with many automated tools available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing custom fixes with proper input validation and parameterized queries.

🔧 Temporary Workarounds

Input Validation Filter

all

Add server-side input validation to sanitize fname parameter and other user inputs

Modify register.php to include input sanitization functions

Web Application Firewall

all

Deploy WAF with SQL injection rules to block malicious requests

Configure WAF to block SQL injection patterns

🧯 If You Can't Patch

  • Block external access to the application using network controls
  • Implement strict database user permissions with least privilege

🔍 How to Verify

Check if Vulnerable:

Test register.php endpoint with SQL injection payloads in fname parameter and observe database errors or unexpected behavior

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Test with same SQL injection payloads and verify they are rejected or sanitized without database errors

📡 Detection & Monitoring

Log Indicators:

  • SQL syntax errors in application logs
  • Unusual database queries from web server IP
  • Multiple failed registration attempts with special characters

Network Indicators:

  • HTTP POST requests to register.php containing SQL keywords in parameters
  • Unusual traffic patterns to registration endpoint

SIEM Query:

source="web_logs" AND uri="/register.php" AND (payload CONTAINS "UNION" OR payload CONTAINS "SELECT" OR payload CONTAINS "INSERT" OR payload CONTAINS "DELETE")

📊 Metadata

CVE ID: CVE-2025-5650
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.05% exploit probability (15.4th percentile)
Published: June 5, 2025
Last Updated: June 10, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-5650, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)