CNNVD-202506-1900 Information

CNNVD ID

CNNVD-202506-1900

Related CVE

CVE-2025-6126

• CNNVD Published: 2025-06-16

Description (Chinese)

PHPGurukul Rail Pass Management System是PHPGurukul公司的一个铁路通行证管理系统。 PHPGurukul Rail Pass Management System 1.0版本存在代码注入漏洞，该漏洞源于对文件/contact.php中参数Name的错误操作导致跨站脚本。

Description (English)

PHPGurukul Rail Pass Management System is a railway permit management system for PHPGurukul. PHPGurukul Rail Pass Management System Version 1.0 has a code-injection loophole, which results from an error in the parameter name of the file/contact.php.

Hazard Level

High

Vulnerability Type

代码注入

Affected Vendor

PHPGurukul

Published

2025-06-16

Last Modified

2026-02-24

References

https://github.com/kakalalaww/CVE/issues/12 https://vuldb.com/?submit.592639 https://vuldb.com/?ctiid.312595 https://phpgurukul.com/ https://vuldb.com/?id.312595 https://access.redhat.com/security/cve/cve-2025-6126