Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact
7.5
CVSSv2

CVE-2025-4728

CVSSv4: 6.9 | CVSSv3: 9.8 | CVSSv2: 7.5 | VMScore: 790 | EPSS: 0.00032 | KEV: Not Included
Published: 15/05/2025 Updated: 27/05/2025

Vulnerability Summary

SQL Injection in SourceCodester Best Online News Portal 1.0 via searchtitle Parameter

A critical vulnerability exists in SourceCodester Best Online News Portal version 1.0. The vulnerability is located in the /search.php file and involves an unknown function. By manipulating the searchtitle argument, an attacker can perform a SQL injection attack. The vulnerability can be exploited remotely, and public disclosure means the exploit may potentially be used by malicious actors.

Vulnerable Product Search on Vulmon Subscribe to Product

sourcecodester best online news portal

mayurik best online news portal 1.0

References

CWE-74CWE-89CWE-89https://nvd.nist.govhttps://www.first.org/epsshttps://github.com/Lena-lyy/SQL/issues/4https://vuldb.com/?ctiid.309030https://vuldb.com/?id.309030https://vuldb.com/?submit.570677https://www.sourcecodester.com/https://github.com/Lena-lyy/SQL/issues/4
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
loftoceanCVE-2025-49234CVE-2025-48145spareCVE-2025-49854CVE-2023-33538injectioninjectmichal jaworskitemplate injectionCVE-2025-45878CVE-2025-43200slim seo
Home
/
Search Results
/
CVE-2025-4728
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook