CNNVD-202507-3550 Information

CNNVD ID

CNNVD-202507-3550

Related CVE

CVE-2025-50492

• CNNVD Published: 2025-07-28

Description (Chinese)

PHPGurukul e-Diary Management System是PHPGurukul公司的一个电子日记管理系统。 PHPGurukul e-Diary Management System v1版本存在安全漏洞，该漏洞源于组件/edms/change-password.php会话失效不当，可能导致会话劫持攻击。

Description (English)

PHPGurukul e-Diary Management System is an electronic journal management system for PHPGurukul. PHPGurukul e-Diary Management System v1 has a security loophole, which stems from the improper failure of the component/edms/change-password.php session, which may lead to an hijacking attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-07-28

Last Modified

2026-02-24

References

http://phpgurukul.com https://github.com/VasilVK/CVE/tree/main/CVE-2025-50492 http://e-diary.com https://access.redhat.com/security/cve/cve-2025-50492