CVE-2025-5758 – This critical SQL injection vulnerability in So... (How to Fix)

Q: What is the severity of CVE-2025-5758?

CVE-2025-5758 has a CVSS score of 7.3 (HIGH). This critical SQL injection vulnerability in SourceCodester Open Source Clinic Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the doctorname parameter in /doctor.php. This can lead to unauthorized data access, modification, or deletion. All deployments of version 1.0 are affected.

📋 TL;DR

This critical SQL injection vulnerability in SourceCodester Open Source Clinic Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the doctorname parameter in /doctor.php. This can lead to unauthorized data access, modification, or deletion. All deployments of version 1.0 are affected.

💻 Affected Systems

Products:

SourceCodester Open Source Clinic Management System

Versions: 1.0

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: All installations of version 1.0 are vulnerable by default. The vulnerability affects the /doctor.php endpoint specifically.

📦 What is this software?

Open Source Clinic Management System by Nikhil Bhalerao

View all CVEs affecting Open Source Clinic Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including patient records, user credentials, and system configuration, potentially leading to data breach, system takeover, or ransomware deployment.

🟠

Likely Case

Unauthorized access to sensitive medical data, patient information theft, and potential manipulation of appointment or prescription records.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only allowing data viewing without modification.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public exploit available on GitHub. Attack requires no authentication and uses simple SQL injection techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.sourcecodester.com/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative clinic management software or implementing custom fixes with proper input validation.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement server-side input validation and parameterized queries for all user inputs, especially doctorname parameter.

Implement prepared statements: $stmt = $pdo->prepare('SELECT * FROM doctors WHERE name = ?'); $stmt->execute([$doctorname]);

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting /doctor.php endpoint.

ModSecurity rule: SecRule ARGS:doctorname "@detectSQLi" "id:1001,phase:2,deny,status:403"

🧯 If You Can't Patch

Isolate the system behind a reverse proxy with strict input filtering
Implement network segmentation to limit database access from web server

🔍 How to Verify

Check if Vulnerable:

Test /doctor.php endpoint with SQL injection payloads like ' OR '1'='1 in doctorname parameter and observe database errors or unexpected behavior.

Check Version:

Check application version in admin panel or review source code for version markers

Verify Fix Applied:

Attempt SQL injection attacks against the doctorname parameter and verify they are blocked or sanitized without database errors.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL syntax in access logs for /doctor.php
Database error messages containing SQL fragments
Multiple failed login attempts or unusual parameter values

Network Indicators:

HTTP requests to /doctor.php with SQL keywords in parameters
Unusual database query patterns from web server IP

SIEM Query:

source="web_access.log" AND uri="/doctor.php" AND (param="doctorname" AND value MATCHES "(?i)(union|select|insert|update|delete|drop|--|#|/*)")

📊 Metadata

CVE ID: CVE-2025-5758

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.03% exploit probability (9.4th percentile)

Published: June 6, 2025

Last Updated: June 10, 2025

🔗 References

https://github.com/mysq13/CVE/issues/6 Exploit,Issue Tracking,Third Party Advisory
https://vuldb.com/?ctiid.311301 Permissions Required,VDB Entry
https://vuldb.com/?id.311301 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.590651 Third Party Advisory,VDB Entry
https://www.sourcecodester.com/ Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-5758, you might also want to check these: