CVE-2025-67146

CRITICAL

GYM-MANAGEMENT-SYSTEM 1.0 - Unauthenticated SQL Injection via Name/ID Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-67146. PoCs published by sivaadityacoder.

AI-analyzed exploit summary The repository contains functional PHP exploit code demonstrating SQL injection vulnerabilities in a gym management system. The code shows direct concatenation of user input into SQL queries without proper sanitization, making it vulnerable to SQLi attacks.

Description

Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in (1) member_search.php, (2) trainer_search.php, and (3) gym_search.php, and via the 'id' parameter in (4) payment_search.php. An unauthenticated remote attacker can exploit these issues to inject malicious SQL commands, leading to unauthorized data extraction, authentication bypass, or modification of database contents.

Exploits (1)

github WORKING POC
by sivaadityacoder · phppoc
https://github.com/sivaadityacoder/CVE-2025-67146-CVE-2025-67147

The repository contains functional PHP exploit code demonstrating SQL injection vulnerabilities in a gym management system. The code shows direct concatenation of user input into SQL queries without proper sanitization, making it vulnerable to SQLi attacks.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Custom gym management system (version unspecified)
No auth needed
Prerequisites: Access to vulnerable web application endpoints
devstral-2 · analyzed Apr 25, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 9.4
EPSS 0.0010
EPSS Percentile 27.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-89
Status published
Products (1)
abhishekmali21/gym_management_system 1.0
Published Jan 12, 2026
Tracked Since Feb 18, 2026