VDB
CVE-2025-3976
CVE-2025-3976
PUBLISHED
CVSS 6.900000095367432 MEDIUM
A vulnerability was found in PHPGurukul COVID19 Testing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /new-user-testing.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
EPSS 0.12% · 30.1th percentile
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| phpgurukul | covid19_testing_management_system | 1.0 |
| PHPGurukul | COVID19 Testing Management System | 1.0 |
Exploit Intelligence
- CIRCL seen: CVE-2025-3976 (circl-sighting)
- CIRCL seen: CVE-2025-3976 (circl-sighting)
- VDB-306312 | PHPGurukul COVID19 Testing Management System new-user-testing.php sql injection (circl)
- VDB-306312 | CTI Indicators (IOB, IOC, TTP, IOA) (circl)
- Submit #557472 | PHPGurukul COVID19 Testing Management System v1.0 SQL Injection (circl)
- https://phpgurukul.com/ (circl)
- https://github.com/skyrainoh/CVE/issues/6 (cve.org)
Timeline
- Apr 27, 2025 Coalition ESS Score
- Apr 27, 2025 CVE Published
- Apr 27, 2025 PoC Published
- Apr 27, 2025 PoC Published
- Apr 28, 2025 EPSS Score
- Apr 28, 2025 CVE Updated
- Apr 29, 2025 Coalition ESS Score
- May 7, 2025 Coalition ESS Score
- May 10, 2025 EPSS Score
- May 22, 2025 EPSS Score
- May 23, 2025 Coalition ESS Score
- Jun 1, 2025 Coalition ESS Score
References
- VDB-306312 | PHPGurukul COVID19 Testing Management System new-user-testing.php sql injection vdb
- VDB-306312 | CTI Indicators (IOB, IOC, TTP, IOA) url
- Submit #557472 | PHPGurukul COVID19 Testing Management System v1.0 SQL Injection third-party-advisory
- https://github.com/skyrainoh/CVE/issues/6 exploit
- https://phpgurukul.com/ url
- https://nvd.nist.gov/vuln/detail/CVE-2025-3976 advisory
- https://phpgurukul.com url