Critical SQLi Hits School Management System

/CRITICAL
SCW vulnerabilitycvecriticalhigh-severitysql-injection
Critical SQLi Hits School Management System

The National Vulnerability Database (NVD) has flagged CVE-2025-65135, a critical time-based blind SQL injection vulnerability in manikandan580’s School-management-system version 1.0. This flaw, rated with a CVSS score of 9.8, resides in the /studentms/admin/between-date-reprtsdetails.php component and is exploitable via the fromdate POST parameter.

SQL injection, especially a blind variant, is a nasty piece of work. Attackers can leverage this to extract sensitive data from the underlying database, potentially including student records, administrative credentials, and other confidential information, without directly seeing the database’s output. The ‘time-based’ aspect means they’d infer data by measuring response times, a slower but equally effective exfiltration method. Given the ‘Critical’ severity, this isn’t just a theoretical risk; it’s a gaping hole that demands immediate attention for anyone running this specific system.

Related ATT&CK Techniques

T1190 Exploit Public-Facing Application Initial Access T1595.002 Vulnerability Scanning Reconnaissance T1189 Drive-by Compromise Initial Access

🛡️ Detection Rules

4 rules · 5 SIEM formats

4 auto-generated detection rules for this incident, mapped to MITRE ATT&CK. Available in Sigma, Splunk SPL, Sentinel KQL, Elastic Lucene, and QRadar AQL.

high T1190 Initial Access

Web Application Exploitation Attempt — CVE-2025-65135

Sigma Splunk SPL Sentinel KQL Elastic QRadar AQL

Get this rule in your SIEM's native format — copy, paste, detect. No manual conversion.

4 Sigma rules mapped to the ATT&CK techniques from this breach — pick your SIEM and get a ready-to-paste query.

Get Detection Rules →

Indicators of Compromise

IDTypeIndicator
CVE-2025-65135 SQLi manikandan580 School-management-system 1.0
CVE-2025-65135 SQLi /studentms/admin/between-date-reprtsdetails.php
CVE-2025-65135 SQLi POST parameter 'fromdate'

By Shimi's Cyber World Editorial

Related Posts

Critical RCE Flaw Hits NuGet Gallery Backend

CVE-2026-39399 — NuGet Gallery is a package repository that powers nuget.org. A security vulnerability exists in the NuGetGallery backend job’s handling of .nuspec files within...

vulnerabilityCVEcriticalhigh-severityremote-code-executioncwe-20cwe-22
/CRITICAL /⚑ 4 IOCs

BoidCMS LFI to RCE: A Critical Template Flaw

CVE-2026-39387 — BoidCMS is an open-source, PHP-based flat-file CMS for building simple websites and blogs, using JSON as its database. Versions prior to 2.1.3 are...

vulnerabilityCVEhigh-severityremote-code-executioncwe-98
/HIGH /⚑ 4 IOCs

Nanobot AI: WebSocket Hijack Puts WhatsApp Sessions at Risk

CVE-2026-35589 — nanobot is a personal AI assistant. Versions prior to 0.1.5 contain a Cross-Site WebSocket Hijacking (CSWSH) vulnerability exists in the bridge's WebSocket server...

vulnerabilityCVEhigh-severitycwe-1385
/HIGH /⚑ 5 IOCs