CVE-2025-12277
BaseFortify
Publication date: 2025-10-27
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| abdullah-hasan-sajjad | online-school | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-74 | The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. |
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-12277 is a critical SQL injection vulnerability in the Abdullah-Hasan-Sajjad Online-School web application, specifically in the /studentLogin.php file. The vulnerability occurs because the application improperly handles the Email parameter by using insecure string concatenation to build SQL queries without proper input validation or parameterization. This allows an attacker to inject malicious SQL code remotely, potentially bypassing authentication by using a 'universal password' to log in without valid credentials. [1, 3]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing attackers to remotely execute arbitrary SQL commands on the database, leading to unauthorized access to sensitive information, bypassing authentication controls, and potentially compromising the confidentiality, integrity, and availability of the system. Attackers can log in without valid credentials and manipulate or extract data, which can disrupt normal operations and expose private data. [1, 3]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying attempts to exploit the SQL injection in the /studentLogin.php file, particularly targeting the Email parameter. One method is to monitor web server logs for suspicious requests containing SQL injection payloads or unusual query strings. Additionally, using Google Dorking with the query 'inurl:studentLogin.php' can help identify vulnerable targets externally. For detection on your system, you can use tools like sqlmap to test the /studentLogin.php endpoint for SQL injection vulnerabilities. Example command: sqlmap -u "http://yourserver/studentLogin.php?Email=test" --batch --risk=3 --level=5. Monitoring for authentication bypass attempts using a "universal password" may also indicate exploitation attempts. [3, 1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected component or application with an alternative product, as no patches or vendor mitigations are available. Avoid using the vulnerable version of Abdullah-Hasan-Sajjad Online-School up to commit f09dda77b4c29aa083ff57f4b1eb991b98b68883. Implement web application firewalls (WAF) to block SQL injection attempts targeting the /studentLogin.php endpoint. Additionally, restrict access to the vulnerable interface if possible and monitor for exploitation attempts. Long term, ensure proper input validation and use parameterized queries to prevent SQL injection. [3]