—

CVE-2025-65133EXPLOITED

n/a · n/a

CVE-2025-65133: A SQL injection vulnerability exists in the School Management System (version 1.0) by manikandan580. An unauthenticated

Description

A vulnerability was found in manikandan580 School Management System 1.0 and classified as critical. This affects an unknown function of the component Endpoint. The manipulation results in sql injection.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a, 1.0

References

https://github.com/TREXNEGRO/Security-Advisories/blob/main/CVE-2025-65133/README.md

Related News (1 articles)

Tier C

VulDB6h ago

CVE-2025-65133 | manikandan580 School Management System 1.0 Endpoint sql injection

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

PublishedApr 14, 2026

Last enriched6h agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2025-65135EXP

CVE-2025-65135: In manikandan580 School-management-system 1.0, a time-based blind SQL injection vulnerability exists in /studentms/admin

Trending: 56

HIGHCVE-2026-38529EXP

CVE-2026-38529: A Broken Object-Level Authorization (BOLA) in the /Settings/UserController.php endpoint of Webkul Krayin CRM v2.2.x allo

Trending: 50

HIGHCVE-2026-38530EXP

CVE-2026-38530: A Broken Object-Level Authorization (BOLA) in the /Controllers/Lead/LeadController.php endpoint of Webkul Krayin CRM v2.

Trending: 50

MEDIUMCVE-2025-65136EXP

CVE-2025-65136: In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php v

Trending: 49

MEDIUMCVE-2025-65132EXP

CVE-2025-65132: alandsilva26 hotel-management-php 1.0 is vulnerable to Cross Site Scripting (XSS) in /public/admin/edit_room.php which a

Trending: 49

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 14, 2026

Discovered by ZDM

Apr 14, 2026

Actively Exploited

Apr 14, 2026

Updated: description, affectedVersions, severity, activelyExploited, tags

Apr 14, 2026

Version History

Last enriched 6h ago

v2Tier C6h ago

Updated vendor and product information, changed severity to CRITICAL, and added affected version 1.0.

descriptionaffectedVersionsseverityactivelyExploitedtags

via VulDB

v16h ago

Initial creation