CNNVD-202509-183 Information

CNNVD ID

CNNVD-202509-183

Related CVE

CVE-2025-56254

• CNNVD Published: 2025-09-02

Description (Chinese)

PHPGurukul Employee Leave Management System是PHPGurukul公司的一个员工休假管理系统。 PHPGurukul Employee Leave Management System 2.1版本存在安全漏洞，该漏洞源于leaveid参数处理不当，可能导致不安全的直接对象引用攻击。

Description (English)

PHPGurukul Employee Leave Management System is an employee leave management system for PHPGurukul. PHPGurukul Employe Leave Management System version 2.1 contains a security loophole, which stems from the inappropriate handling of the leaveid parameters and may lead to unsafe direct targeting.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-09-02

Last Modified

2026-02-24

References

https://github.com/rishb0/CVEs-Assigned/blob/main/CVE-2025-56254.md https://nvd.nist.gov/vuln/detail/CVE-2025-56254 https://access.redhat.com/security/cve/cve-2025-56254