CVE-2025-6911 – This critical SQL injection vulnerability in PH... (How to Fix)

Q: What is the severity of CVE-2025-6911?

CVE-2025-6911 has a CVSS score of 6.3 (MEDIUM). This critical SQL injection vulnerability in PHPGurukul Student Record System 3.2 allows attackers to execute arbitrary SQL commands via the 'del' parameter in /manage-subjects.php. Remote attackers can potentially access, modify, or delete database content. All users running the vulnerable version are affected.

📋 TL;DR

This critical SQL injection vulnerability in PHPGurukul Student Record System 3.2 allows attackers to execute arbitrary SQL commands via the 'del' parameter in /manage-subjects.php. Remote attackers can potentially access, modify, or delete database content. All users running the vulnerable version are affected.

💻 Affected Systems

Products:

PHPGurukul Student Record System

Versions: Version 3.2

Operating Systems: Any OS running PHP

Default Config Vulnerable: ⚠️ Yes

Notes: Requires PHP environment with database connectivity. No special configuration needed for exploitation.

📦 What is this software?

Student Record System by Phpgurukul

View all CVEs affecting Student Record System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, authentication bypass, and potential server takeover via SQL injection to RCE chaining.

🟠

Likely Case

Unauthorized access to student records, grade manipulation, personal data exfiltration, and database corruption.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or limited data exposure.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit details are publicly available on GitHub. Attack requires access to the vulnerable endpoint but may not require authentication depending on system configuration.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://phpgurukul.com/

Restart Required: No

Instructions:

1. Check vendor website for security updates. 2. If no patch available, implement workarounds. 3. Consider migrating to alternative software if vendor is unresponsive.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameterized queries or prepared statements for the 'del' parameter in manage-subjects.php

Edit manage-subjects.php to replace raw SQL with prepared statements using PDO or mysqli

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting the vulnerable endpoint

Add WAF rule: Block requests containing SQL keywords in 'del' parameter to /manage-subjects.php

🧯 If You Can't Patch

Restrict network access to the application using firewall rules
Implement database user with minimal privileges (read-only if possible)

🔍 How to Verify

Check if Vulnerable:

Test the /manage-subjects.php endpoint with SQL injection payloads in the 'del' parameter and observe database errors or unexpected behavior.

Check Version:

Check application version in admin panel or review source code for version markers

Verify Fix Applied:

Attempt SQL injection after implementing fixes and confirm no database errors or unauthorized data access occurs.

📡 Detection & Monitoring

Log Indicators:

SQL syntax errors in application logs
Unusual database queries from web server IP
Multiple failed parameter manipulation attempts

Network Indicators:

HTTP POST requests to /manage-subjects.php with SQL keywords in parameters
Unusual database port traffic from web server

SIEM Query:

source="web_logs" AND uri="/manage-subjects.php" AND (param="del" AND value MATCHES "(?i)(union|select|insert|delete|update|drop|--|#|;)")

📊 Metadata

CVE ID: CVE-2025-6911

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.04% exploit probability (10.7th percentile)

Published: June 30, 2025

Last Updated: July 8, 2025

🔗 References

https://github.com/f1rstb100d/myCVE/issues/94 Exploit,Issue Tracking,Third Party Advisory
https://phpgurukul.com/ Permissions Required,Product,Third Party Advisory,VDB Entry
https://vuldb.com/?ctiid.314404 Third Party Advisory,VDB Entry
https://vuldb.com/?id.314404 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.605076 Third Party Advisory,VDB Entry
https://github.com/f1rstb100d/myCVE/issues/94 Exploit,Issue Tracking,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-6911, you might also want to check these: