Login Sign Up

CVE-2025-6351

6.3 MEDIUM
SQL Injection

📋 TL;DR

A critical SQL injection vulnerability exists in itsourcecode Employee Record Management System 1.0 through the /editprofile.php file. Attackers can remotely exploit this by manipulating the emp1name parameter to execute arbitrary SQL commands. Organizations using this software are affected.

💻 Affected Systems

Products:
  • itsourcecode Employee Record Management System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the /editprofile.php endpoint specifically through emp1name parameter manipulation.

📦 What is this software?

Employee Management System by Clivedelacruz

View all CVEs affecting Employee Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, modification, deletion, and potential remote code execution via database functions.

🟠

Likely Case

Unauthorized access to employee records, sensitive data exfiltration, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or minor data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit details are publicly disclosed on GitHub, making exploitation straightforward for attackers with basic SQL injection knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://itsourcecode.com/

Restart Required: No

Instructions:

1. Check vendor website for security updates. 2. If patch available, download and apply. 3. Test functionality after patching.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation for emp1name parameter to reject SQL special characters

Modify /editprofile.php to sanitize emp1name input using prepared statements or parameterized queries

Web Application Firewall

all

Deploy WAF with SQL injection rules to block malicious requests

Configure WAF to block requests containing SQL keywords in emp1name parameter

🧯 If You Can't Patch

  • Restrict network access to the application using firewall rules
  • Implement database user with minimal necessary permissions

🔍 How to Verify

Check if Vulnerable:

Test /editprofile.php endpoint with SQL injection payloads in emp1name parameter and observe database errors or unexpected behavior.

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Attempt SQL injection after remediation and confirm proper error handling or rejection of malicious input.

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple failed login attempts from single IP
  • Unexpected database queries

Network Indicators:

  • HTTP requests to /editprofile.php with SQL keywords in parameters
  • Unusual outbound database connections

SIEM Query:

source="web_logs" AND uri="/editprofile.php" AND (param="emp1name" AND value CONTAINS "UNION" OR value CONTAINS "SELECT" OR value CONTAINS "--")

📊 Metadata

CVE ID: CVE-2025-6351
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.04% exploit probability (12th percentile)
Published: June 20, 2025
Last Updated: June 26, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-6351, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)