CVE-2025-25387
Published: 13 February 2025
Summary
CVE-2025-25387 is a high-severity SQL Injection (CWE-89) vulnerability in Phpgurukul Land Record System. Its CVSS base score is 7.2 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 16.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly prevents SQL injection by requiring validation of untrusted inputs like the propertytype POST parameter before incorporation into SQL queries.
Mandates identification, reporting, and correction of the specific SQL injection flaw in /admin/manage-propertytype.php to eliminate the vulnerability.
Boundary protection with web application firewalls can inspect and block malicious SQL injection payloads in POST requests to the vulnerable endpoint.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SQL injection vulnerability in public-facing web application (/admin/manage-propertytype.php) allows remote arbitrary code execution via POST parameter, directly enabling exploitation of public-facing applications.
NVD Description
A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the propertytype POST request parameter.
Deeper analysisAI
CVE-2025-25387 is a SQL injection vulnerability in the /admin/manage-propertytype.php component of PHPGurukul Land Record System version 1.0. The flaw allows remote attackers to execute arbitrary code by injecting malicious payloads into the propertytype POST request parameter. Published on 2025-02-13, it carries a CVSS v3.1 base score of 7.2 (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) and maps to CWE-89.
Attackers with high privileges, such as administrative access, can exploit this vulnerability remotely over the network with low complexity and without requiring user interaction. Successful exploitation enables high-impact compromise of confidentiality, integrity, and availability, including arbitrary code execution on the affected system.
References point to GitHub writeups documenting the SQL injection issue in PHPGurukul Land Record System, including a PDF detailing the vulnerability. No specific patch or mitigation guidance is outlined in the provided references.
Details
- CWE(s)