← back
CVE-2025-65133

CVE-2025-65133

CVSS 9.8 CRITICALEPSS 0.5%CWE-89
A SQL injection vulnerability exists in the School Management System (version 1.0) by manikandan580. An unauthenticated or authenticated remote attacker can supply a crafted HTTP request to the affected endpoint to manipulate SQL query logic and extract sensitive database information.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found1
cve_referencegithub.com/TREXNEGRO/Security-Advisories/blob/main/CVE-2025-65133/poc.mdunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/TREXNEGRO/Security-Advisories/blob/main/CVE-2025-65133/poc.mdhttps://github.com/TREXNEGRO/Security-Advisories/blob/main/CVE-2025-65133/README.md