CNNVD-202507-3547 Information

CNNVD ID

CNNVD-202507-3547

Related CVE

CVE-2025-50488

• CNNVD Published: 2025-07-28

Description (Chinese)

PHPGurukul Online Library Management System是PHPGurukul公司的一个在线图书管理系统。 PHPGurukul Online Library Management System v3.0版本存在安全漏洞，该漏洞源于组件/library/change-password.php会话失效不当，可能导致会话劫持攻击。

Description (English)

PHPGurukul Online Library Management System is an online library management system for PHPGurukul. PHPGurukul Online Library Management System v. 3.0 contains a security loophole, which stems from the improper failure of the component/library/change-password.php session, which may lead to a session hijacking attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-07-28

Last Modified

2026-02-24

References

https://github.com/VasilVK/CVE/tree/main/CVE-2025-50488 http://online.com http://phpgurukul.com https://access.redhat.com/security/cve/cve-2025-50488