Login Sign Up

CVE-2025-8931

6.3 MEDIUM
SQL Injection

📋 TL;DR

This SQL injection vulnerability in Medical Store Management System 1.0 allows attackers to manipulate database queries through the password change function. Attackers can potentially access, modify, or delete sensitive medical store data. Organizations using this software are affected.

💻 Affected Systems

Products:
  • Medical Store Management System
Versions: 1.0
Operating Systems: Any OS running Java applications
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable; requires Java runtime environment

📦 What is this software?

Medical Store Management System by Fabian

View all CVEs affecting Medical Store Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to theft of sensitive medical records, financial data, and potential ransomware deployment

🟠

Likely Case

Unauthorized access to patient records, inventory data, and financial information

🟢

If Mitigated

Limited data exposure if proper input validation and database permissions are enforced

🌐 Internet-Facing: HIGH - Attack can be launched remotely without authentication
🏢 Internal Only: MEDIUM - Internal attackers could exploit if system is network-accessible

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploit requires access to password change functionality; public proof-of-concept available

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing custom fixes.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement parameterized queries and input validation for the ChangePassword.java file

Modify ChangePassword.java to use PreparedStatement instead of concatenated SQL

Web Application Firewall

all

Deploy WAF with SQL injection rules to block malicious requests

🧯 If You Can't Patch

  • Isolate the system behind a firewall with strict access controls
  • Implement database-level protections: minimal privileges, query logging, and regular audits

🔍 How to Verify

Check if Vulnerable:

Check if Medical Store Management System version 1.0 is installed and review ChangePassword.java for SQL concatenation

Check Version:

Check application documentation or configuration files for version information

Verify Fix Applied:

Test password change functionality with SQL injection payloads; verify parameterized queries are used

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in database logs
  • Multiple failed password change attempts
  • SQL syntax errors in application logs

Network Indicators:

  • POST requests to password change endpoint with SQL keywords
  • Unusual database connection patterns

SIEM Query:

source="web_logs" AND (url_path="/changepassword" OR url_path LIKE "%ChangePassword%") AND (request_body CONTAINS "UNION" OR request_body CONTAINS "SELECT" OR request_body CONTAINS "INSERT")

📊 Metadata

CVE ID: CVE-2025-8931
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.04% exploit probability (10.3th percentile)
Published: August 14, 2025
Last Updated: August 14, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8931, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)