Login Sign Up

CVE-2025-7155

7.3 HIGH
SQL Injection

📋 TL;DR

This critical vulnerability in PHPGurukul Online Notes Sharing System 1.0 allows remote attackers to perform SQL injection via the sessionid parameter in the cookie handler. Attackers can potentially access, modify, or delete database content. All users running the vulnerable version are affected.

💻 Affected Systems

Products:
  • PHPGurukul Online Notes Sharing System
Versions: 1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the /Dashboard component cookie handler specifically.

📦 What is this software?

Online Notes Sharing System by Phpgurukul

View all CVEs affecting Online Notes Sharing System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data manipulation, or complete system takeover via SQL injection.

🟠

Likely Case

Unauthorized data access, session hijacking, and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation and WAF protection in place.

🌐 Internet-Facing: HIGH - Remote exploitation is possible without authentication.
🏢 Internal Only: MEDIUM - Internal attackers could exploit, but external threat is higher.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public exploit available with step-by-step instructions. Researcher disclosure mentions XPath injection but payload appears to be SQL injection.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://phpgurukul.com/

Restart Required: No

Instructions:

No official patch available. Consider workarounds or alternative software.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation and parameterized queries for sessionid parameter

Modify PHP code to use prepared statements: $stmt = $conn->prepare('SELECT * FROM users WHERE sessionid = ?'); $stmt->bind_param('s', $sessionid);

Web Application Firewall Rules

all

Deploy WAF rules to block SQL injection patterns in cookie parameters

Add WAF rule: Detect and block SQL injection patterns in Cookie: sessionid header

🧯 If You Can't Patch

  • Isolate the system behind a reverse proxy with strict input filtering
  • Implement network segmentation to limit database access from application servers

🔍 How to Verify

Check if Vulnerable:

Test with SQL injection payloads in sessionid cookie parameter to /Dashboard endpoint

Check Version:

Check application version in admin panel or source code files

Verify Fix Applied:

Verify that SQL injection payloads no longer execute and return error pages

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple failed login attempts with SQL patterns in cookies

Network Indicators:

  • SQL injection patterns in HTTP Cookie headers
  • Unusual database query patterns from application server

SIEM Query:

source="web_logs" AND ("sql" OR "union" OR "select" OR "sleep") AND cookie="sessionid"

📊 Metadata

CVE ID: CVE-2025-7155
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.04% exploit probability (12th percentile)
Published: July 8, 2025
Last Updated: July 9, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-7155, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)