CVE-2025-6836 – A critical SQL injection vulnerability in code-... (How to Fix)

Q: What is the severity of CVE-2025-6836?

CVE-2025-6836 has a CVSS score of 7.3 (HIGH). A critical SQL injection vulnerability in code-projects Library System 1.0 allows remote attackers to execute arbitrary SQL commands via the phone parameter in profile.php. This can lead to unauthorized data access, modification, or deletion. All deployments of Library System 1.0 with the vulnerable profile.php file are affected.

📋 TL;DR

A critical SQL injection vulnerability in code-projects Library System 1.0 allows remote attackers to execute arbitrary SQL commands via the phone parameter in profile.php. This can lead to unauthorized data access, modification, or deletion. All deployments of Library System 1.0 with the vulnerable profile.php file are affected.

💻 Affected Systems

Products:

code-projects Library System

Versions: 1.0

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Any installation with the vulnerable profile.php file is affected. The vulnerability exists in the default installation.

📦 What is this software?

Library System by Code Projects

View all CVEs affecting Library System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data exfiltration, modification, deletion, or potential remote code execution if database functions allow it.

🟠

Likely Case

Unauthorized access to sensitive library data (user information, book records, admin credentials), data manipulation, or denial of service.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and network segmentation in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details are publicly available. SQL injection via phone parameter is straightforward to exploit with common tools like sqlmap.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider implementing input validation and parameterized queries manually, or migrate to a supported alternative.

🔧 Temporary Workarounds

Input Validation Filter

all

Add server-side validation to only accept expected phone number formats (digits, dashes, parentheses) and reject SQL special characters.

# Example PHP validation snippet
$phone = $_POST['phone'];
if (!preg_match('/^[0-9\-()\s]+$/', $phone)) {
    die('Invalid phone number');
}

Web Application Firewall (WAF)

all

Deploy a WAF with SQL injection rules to block malicious requests to profile.php.

# ModSecurity rule example
SecRule ARGS:phone "@detectSQLi" "id:1001,phase:2,deny,status:403"

🧯 If You Can't Patch

Disable or restrict access to profile.php if not essential.
Implement network segmentation to isolate the Library System from sensitive databases and other critical systems.

🔍 How to Verify

Check if Vulnerable:

Test the phone parameter in profile.php with SQL injection payloads (e.g., ' OR '1'='1) and observe if SQL errors or unexpected behavior occurs.

Check Version:

Check the software version in the admin panel or review the source code for version indicators.

Verify Fix Applied:

Retest with SQL injection payloads after applying workarounds; successful fixes should reject malicious input or return generic errors.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL errors in application logs
Multiple failed login attempts or parameter tampering in access logs for profile.php

Network Indicators:

HTTP requests to profile.php with SQL keywords (UNION, SELECT, etc.) in parameters
Abnormal database query patterns from the application server

SIEM Query:

source="web_logs" AND uri="/profile.php" AND (param="phone" AND value MATCHES "(?i)(union|select|insert|delete|update|drop|--|#)")

📊 Metadata

CVE ID: CVE-2025-6836

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.04% exploit probability (12.4th percentile)

Published: June 29, 2025

Last Updated: July 1, 2025

🔗 References

https://code-projects.org/ Product
https://github.com/blueandhack/cve/issues/4 Exploit,Issue Tracking,Third Party Advisory
https://vuldb.com/?ctiid.314280 Permissions Required,VDB Entry
https://vuldb.com/?id.314280 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.603145 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-6836, you might also want to check these: