Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
CVE-2025-65379
CVE-2025-65379
Description
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php endpoint. Specifically, the username and mobileno parameters accepts unvalidated user input, which is then concatenated directly into a backend SQL query.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.