CNNVD-202507-3554 Information
Jul 28, 2025
cve
CNNVD ID
CNNVD-202507-3554
Related CVE
- CNNVD Published: 2025-07-28
Description (Chinese)
PHPGurukul Blood Bank & Donor Management System是PHPGurukul公司的一个血库与献血者管理系统。 PHPGurukul Blood Bank & Donor Management System v2.4版本存在安全漏洞,该漏洞源于组件/bbdms/change-password.php会话失效不当,可能导致会话劫持攻击。
Description (English)
PHPGurukul Bloom Bank & Donor Management System is a blood bank and donor management system for PHPGurukul. PHPGurukul Bloom Bank & Donor Management System v. 2.4 contains a security loophole, which arises from the improper failure of the component/bbdms/change-password.php session, which may lead to a session hijacking attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
PHPGurukul
Published
2025-07-28
Last Modified
2026-02-24
References
http://blood.com https://github.com/VasilVK/CVE/tree/main/CVE-2025-50487 http://phpgurukul.com https://access.redhat.com/security/cve/cve-2025-50487
Share on: