CVE-2025-57147

CVSS 7.5 HIGHEPSS 0.5%CWE-89

A SQL Injection vulnerability was found in phpgurukul Complaint Management System 2.0. The vulnerability is due to lack of input validation of multiple parameters including fullname, email, and contactno in user/registration.php.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://doc.clickup.com/3897127/p/h/3pxt7-12556/5435bb675762866 https://github.com/hptcybersecurity/CVE/blob/main/CVE-2025-57147.md