Cyber Resilience

CVE-2025-1906

MediumPublic PoC

Published: 04 March 2025

Published
04 March 2025
Modified
06 March 2025
KEV Added
Patch
CVSS Score v4 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0013 32.3th percentile
Risk Priority 10 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-1906 is a medium-severity Injection (CWE-74) vulnerability in Phpgurukul Restaurant Table Booking System. Its CVSS base score is 5.1 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 32.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-1906 is a critical SQL injection vulnerability (CWE-74, CWE-89) in PHPGurukul Restaurant Table Booking System 1.0, published on 2025-03-04. The flaw resides in unknown code within the /admin/profile.php file, where manipulation of the 'mobilenumber' argument enables SQL injection. The vulnerability is remotely exploitable, and other parameters may also be affected.

A remote attacker with high privileges (PR:H) can exploit this issue with low attack complexity (AC:L) over the network (AV:N) and without user interaction (UI:N), as indicated by the CVSS v3.1 base score of 4.7 (C:L/I:L/A:L/S:U). Successful exploitation allows limited impacts on confidentiality, integrity, and availability through SQL injection.

Advisories provide further details on the vulnerability, including exploit information disclosed publicly via a GitHub issue at https://github.com/HaroldFinch-L/CVE/issues/2 and VulDB entries at https://vuldb.com/?ctiid.298426, https://vuldb.com/?id.298426, and https://vuldb.com/?submit.508915. The vendor website is https://phpgurukul.com/.

EU & UK References

Vulnerability details

A vulnerability has been found in PHPGurukul Restaurant Table Booking System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack can be initiated…

more

remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

The CVE describes a remotely exploitable SQL injection vulnerability in a web application (/admin/profile.php), directly enabling the T1190 technique of exploiting public-facing applications to achieve limited confidentiality, integrity, and availability impacts.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-1901Same product: Phpgurukul Restaurant Table Booking System
CVE-2025-1894Same product: Phpgurukul Restaurant Table Booking System
CVE-2025-1952Same product: Phpgurukul Restaurant Table Booking System
CVE-2025-1900Same product: Phpgurukul Restaurant Table Booking System
CVE-2025-2683Same vendor: Phpgurukul
CVE-2025-7482Same vendor: Phpgurukul
CVE-2025-7164Same vendor: Phpgurukul
CVE-2026-0733Same vendor: Phpgurukul
CVE-2026-2088Same vendor: Phpgurukul
CVE-2025-7521Same vendor: Phpgurukul

Affected Assets

phpgurukul
restaurant table booking system
1.0

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly prevents SQL injection by requiring validation and sanitization of untrusted inputs like the 'mobilenumber' parameter in /admin/profile.php.

prevent

Mandates identification, reporting, and correction of flaws such as the SQL injection vulnerability in this CVE to eliminate the root cause.

preventdetect

Boundary protection with web application firewalls blocks SQL injection attempts on the vulnerable /admin/profile.php endpoint.

References