CVE-2025-8987

High CVSS 7.3

Overview

A vulnerability was identified in SourceCodester COVID 19 Testing Management System 1.0. This affects an unknown part of the file /test-details.php. The manipulation of the argument remark leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CWE: CWE-74 Published: 2025-08-14T23:15:34.617

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 7.3 (HIGH)
Detected tags: sql (tag impact: MODERATE)

Recommended actions:

Use parameterized queries/ORM (avoid string concatenation).
Add WAF rules and input validation.

Overview

Recommended tools

Tags