CNNVD-202511-1872 Information

CNNVD ID

CNNVD-202511-1872

Related CVE

CVE-2024-44654

• CNNVD Published: 2025-11-17

Description (Chinese)

PHPGurukul Complaint Management System是PHPGurukul公司的一个投诉管理系统。 PHPGurukul Complaint Management System 2.0版本存在安全漏洞，该漏洞源于reset-password.php中email和mobileno参数未经验证，可能导致SQL注入攻击。

Description (English)

PHPGurukul Complaint Management System is a complaints management system for PHPGurukul. There is a security loophole in version 2.0 of PHPGurukul Complaint Management System, which originates from unverified e-mail and mobileno parameters in reset-password.php, which may result in an injection attack by SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-11-17

Last Modified

2026-02-24

References

https://github.com/leexsoyoung/CVEs/blob/main/CVE-2024-44654.md https://phpgurukul.com/complaint-management-sytem https://access.redhat.com/security/cve/cve-2024-44654