CNNVD-202507-2638 Information
CNNVD ID
CNNVD-202507-2638
Related CVE
- CNNVD Published: 2025-07-21
Description (Chinese)
PHPGurukul Online Banquet Booking System是PHPGurukul公司的一个网上宴会预订系统。 PHPGurukul Online Banquet Booking System 1.0版本存在代码注入漏洞,该漏洞源于文件/admin/login.php中参数user_login/userpassword的错误操作导致跨站脚本攻击。
Description (English)
PHPGurukul Online Banquet Booking Systems is an online party reservation system for PHPGurukul. PHPGurukul Online Banquet Booking System Version 1.0 contains a code-injection loophole, which stems from the error of the parameter user login/userpassword in the file/admin/login.php resulting in a cross-site script attack.
Hazard Level
High
Vulnerability Type
代码注入
Affected Vendor
PHPGurukul
Published
2025-07-21
Last Modified
2026-02-24
References
https://drive.google.com/file/d/1CnrQn_-nSWLCUXJrwgrDFyI5D5MOzD-n/view https://github.com/LagonGit/ReportCVE/issues/2 https://phpgurukul.com/ https://vuldb.com/?ctiid.317054 https://vuldb.com/?id.317054 https://vuldb.com/?submit.618895 https://vuldb.com/?submit.618907
Share on: