CVE-2025-70892 | THREATINT

Description

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint.

PUBLISHED Reserved 2026-01-09 | Published 2026-01-15 | Updated 2026-01-15 | Assigner mitre

References

phpgurukul.com/cyber-cafe-management-system-using-php-mysql/

github.com/...anagement-System-CVEs/tree/main/CVE-2025-70892

cve.org (CVE-2025-70892)

nvd.nist.gov (CVE-2025-70892)

Download JSON