CNNVD-202506-1893 Information

CNNVD ID

CNNVD-202506-1893

Related CVE

CVE-2025-6125

• CNNVD Published: 2025-06-16

Description (Chinese)

PHPGurukul Rail Pass Management System是PHPGurukul公司的一个铁路通行证管理系统。 PHPGurukul Rail Pass Management System 1.0版本存在代码注入漏洞，该漏洞源于对文件/admin/aboutus.php中参数pagedes的错误操作导致跨站脚本。

Description (English)

PHPGurukul Rail Pass Management System is a railway permit management system for PHPGurukul. PHPGurukul Rail Pass Management System Version 1.0 has a code-in-the-code loophole, which results from an error in the pagedes parameter in file/admin/aboutus.php.

Hazard Level

Critical

Vulnerability Type

代码注入

Affected Vendor

PHPGurukul

Published

2025-06-16

Last Modified

2026-02-24

References

https://github.com/kakalalaww/CVE/issues/11 https://vuldb.com/?id.312594 https://vuldb.com/?submit.592638 https://vuldb.com/?ctiid.312594 https://phpgurukul.com/ https://access.redhat.com/security/cve/cve-2025-6125