Login Sign Up

CVE-2025-8946

7.3 HIGH
SQL Injection Authentication Bypass

📋 TL;DR

CVE-2025-8946 is an SQL injection vulnerability in the Online Notes Sharing Platform 1.0 login.php file that allows attackers to manipulate database queries through the User parameter. This enables unauthorized access to sensitive data and potentially system compromise. All deployments of version 1.0 are affected.

💻 Affected Systems

Products:
  • projectworlds Online Notes Sharing Platform
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the /login.php endpoint specifically through the User parameter. No special configuration required for exploitation.

📦 What is this software?

Online Notes Sharing Platform by Projectworlds

View all CVEs affecting Online Notes Sharing Platform →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, authentication bypass, remote code execution, and full system takeover.

🟠

Likely Case

Unauthorized access to user credentials, sensitive notes data, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or partial data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub. SQL injection is a well-understood attack vector with many automated tools available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Input Validation and Parameterized Queries

all

Modify login.php to use prepared statements and validate/sanitize User parameter input

Replace SQL queries with parameterized statements using PDO or mysqli prepared statements

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns

Configure WAF to block SQL injection patterns: ' OR '1'='1, UNION SELECT, --, #, ;

🧯 If You Can't Patch

  • Isolate the application behind a reverse proxy with strict input filtering
  • Implement network segmentation and restrict database access to only necessary services

🔍 How to Verify

Check if Vulnerable:

Test login.php with SQL injection payloads in User parameter: ' OR '1'='1

Check Version:

Check application version in source code or configuration files

Verify Fix Applied:

Attempt SQL injection tests and verify they are blocked or sanitized

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple failed login attempts with SQL patterns
  • Database query errors containing injection payloads

Network Indicators:

  • HTTP requests to /login.php with SQL keywords in parameters
  • Unusual database connection patterns from web server

SIEM Query:

source="web_logs" AND uri="/login.php" AND (param="User" AND value MATCHES "('|--|#|;|UNION|SELECT|OR|AND)")

📊 Metadata

CVE ID: CVE-2025-8946
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.03% exploit probability (8.4th percentile)
Published: August 14, 2025
Last Updated: August 14, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8946, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)