Login Sign Up

CVE-2025-6446

7.3 HIGH
SQL Injection Authentication Bypass

📋 TL;DR

This critical SQL injection vulnerability in Client Details System 1.0 allows remote attackers to execute arbitrary SQL commands via the Username parameter in the admin interface. Attackers can potentially access, modify, or delete database content. All installations of Client Details System 1.0 with the vulnerable admin/index.php file are affected.

💻 Affected Systems

Products:
  • Client Details System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects installations with the vulnerable /clientdetails/admin/index.php file accessible.

📦 What is this software?

Client Details System by Fabian

View all CVEs affecting Client Details System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, privilege escalation to admin, and potential server takeover via SQL injection to RCE chaining.

🟠

Likely Case

Unauthorized access to sensitive client data, administrative credentials theft, and database manipulation.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and database user privilege restrictions.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub and VulDB, making this easily exploitable.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add server-side validation to sanitize Username parameter input before processing.

Modify /clientdetails/admin/index.php to validate and escape user input

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting the Username parameter.

Add WAF rule: Detect and block SQL injection in POST parameters

🧯 If You Can't Patch

  • Restrict access to /clientdetails/admin/ directory using IP whitelisting or authentication
  • Disable or remove the vulnerable admin/index.php file if not required

🔍 How to Verify

Check if Vulnerable:

Test the Username parameter in /clientdetails/admin/index.php with SQL injection payloads like ' OR '1'='1

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection payloads no longer execute and return error messages

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in web server logs
  • Multiple failed login attempts with SQL payloads in Username field

Network Indicators:

  • HTTP POST requests to /clientdetails/admin/index.php containing SQL keywords in parameters

SIEM Query:

source="web_server" AND uri="/clientdetails/admin/index.php" AND (payload="' OR" OR payload="UNION" OR payload="SELECT")

📊 Metadata

CVE ID: CVE-2025-6446
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.04% exploit probability (12.4th percentile)
Published: June 21, 2025
Last Updated: October 29, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-6446, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)