CVE-2025-8811 – A critical SQL injection vulnerability exists i... (How to Fix)

Q: What is the severity of CVE-2025-8811?

CVE-2025-8811 has a CVSS score of 7.3 (HIGH). A critical SQL injection vulnerability exists in Simple Art Gallery 1.0's /Admin/registration.php file, specifically in the 'fname' parameter. This allows remote attackers to execute arbitrary SQL commands on the database. All users running Simple Art Gallery 1.0 with the vulnerable file accessible are affected.

📋 TL;DR

A critical SQL injection vulnerability exists in Simple Art Gallery 1.0's /Admin/registration.php file, specifically in the 'fname' parameter. This allows remote attackers to execute arbitrary SQL commands on the database. All users running Simple Art Gallery 1.0 with the vulnerable file accessible are affected.

💻 Affected Systems

Products:

Simple Art Gallery

Versions: 1.0

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability exists in the default installation. Any system with /Admin/registration.php accessible is vulnerable.

📦 What is this software?

Simple Art Gallery by Code Projects

View all CVEs affecting Simple Art Gallery →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data manipulation, authentication bypass, and potential remote code execution via database functions.

🟠

Likely Case

Unauthorized data access, user credential theft, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, though SQL injection attempts would still be logged.

🌐 Internet-Facing: HIGH - The vulnerability is remotely exploitable and public exploit details are available.

🏢 Internal Only: MEDIUM - Internal attackers could still exploit this if they have network access to the application.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details are publicly available on GitHub, making this easy to weaponize. The vulnerability requires no authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameterized queries and input validation to /Admin/registration.php

Modify PHP code to use prepared statements: $stmt = $conn->prepare('INSERT INTO users (fname) VALUES (?)'); $stmt->bind_param('s', $fname);

Access Restriction

all

Restrict access to /Admin/registration.php file

Add .htaccess with: Order Deny,Allow
Deny from all
Or use web server configuration to block access to the file

🧯 If You Can't Patch

Implement a Web Application Firewall (WAF) with SQL injection rules
Disable or remove the /Admin/registration.php file if not required

🔍 How to Verify

Check if Vulnerable:

Check if /Admin/registration.php exists and accepts 'fname' parameter. Test with SQL injection payloads like: fname=' OR '1'='1

Check Version:

Check application files or documentation for version information. Default vulnerable version is 1.0.

Verify Fix Applied:

Test the same SQL injection payloads after implementing fixes - they should be rejected or sanitized.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in application logs
Multiple failed login attempts from registration endpoint
SQL syntax errors in logs

Network Indicators:

HTTP POST requests to /Admin/registration.php with SQL keywords in parameters
Unusual database connection patterns

SIEM Query:

source="web_logs" AND uri="/Admin/registration.php" AND (param="fname" AND value MATCHES "'.*OR.*|'.*AND.*|'.*UNION.*")

📊 Metadata

CVE ID: CVE-2025-8811

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.03% exploit probability (7.8th percentile)

Published: August 10, 2025

Last Updated: August 13, 2025

🔗 References

https://code-projects.org/ Product
https://github.com/Darlingzero2/cve/issues/3 Exploit,Issue Tracking
https://vuldb.com/?ctiid.319340 Permissions Required,VDB Entry
https://vuldb.com/?id.319340 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.627395 Third Party Advisory,VDB Entry
https://github.com/Darlingzero2/cve/issues/3 Exploit,Issue Tracking

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8811, you might also want to check these: