CNNVD-202509-116 Information

CNNVD ID

CNNVD-202509-116

Related CVE

CVE-2025-9834

• CNNVD Published: 2025-09-02

Description (Chinese)

PHPGurukul Small CRM是PHPGurukul公司的一套客户关系管理系统。 PHPGurukul Small CRM 4.0版本存在安全漏洞，该漏洞源于对文件/registration.php中参数Username的错误操作导致跨站脚本。

Description (English)

PHPGurukul Small CRM is a customer relationship management system for PHPGurukul. PHPGurukul Small CRM version 4.0 contains a security loophole that results from an error in the use of the parameter Username in the document/registration.php.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-09-02

Last Modified

2026-02-24

References

https://vuldb.com/?submit.642025 https://vuldb.com/?id.322181 https://vuldb.com/?ctiid.322181 https://phpgurukul.com/ https://github.com/YoSheep/cve/blob/main/PHPGurukul%20Small%20CRM%20in%20PHP%20V4.0%20Multiple%20Stored%20Cross-Site%20Scripting%20(XSS)%20Vulnerabilities.md https://access.redhat.com/security/cve/cve-2025-9834 https://nvd.nist.gov/vuln/detail/CVE-2025-9834