← voltar
CVE-2025-11390

PHPGurukul Cyber Cafe Management System POST Parameter search.php cross site scripting

CVSS 5.3 MEDIUMEPSS 0.3%CWE-79CWE-94
A weakness has been identified in PHPGurukul Cyber Cafe Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /search.php of the component POST Parameter Handler. Executing a manipulation of the argument searchdata can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P
Produtos afetados
PHPGurukul · Cyber Cafe Management System

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/QIU-DIE/CVE/issues/4https://phpgurukul.com/https://vuldb.com/?ctiid.327317https://vuldb.com/?id.327317https://vuldb.com/?submit.664984https://vuldb.com/?submit.665028