CVE-2025-11053 | PHPGurukul Small CRM 4.0 /forgot-password.php email sql injection

September 26, 2025 Yanac

A vulnerability was found in PHPGurukul Small CRM 4.0 and classified as critical. This affects an unknown function of the file /forgot-password.php. Executing manipulation of the argument email can lead to sql injection.

This vulnerability is tracked as CVE-2025-11053. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More

CVE-2025-11054 | itsourcecode Open Source Job Portal 1.0 index.php?view=edit ID sql injection
CVE-2025-11052 | kidaze CourseSelectionSystem 1.0/5.php COUNT3s5.php csslc sql injection