CNNVD-202511-2728 Information

CNNVD ID

CNNVD-202511-2728

Related CVE

CVE-2025-65647

• CNNVD Published: 2025-11-25

Description (Chinese)

PHPGurukul Online Shopping Portal是PHPGurukul公司的一个在线商店。 PHPGurukul Online Shopping Portal 2.1版本存在安全漏洞，该漏洞源于订单跟踪功能中存在不安全的直接对象引用，可能导致信息泄露。

Description (English)

PHPGurukul Online Shoping Portal is an online shop of PHPGurukul. PHPGurukul Online Shoping Portal 2.1 has a security loophole, which stems from the presence of unsafe direct object references in the order tracking function, which may lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-11-25

Last Modified

2026-02-24

References

https://github.com/SachuuZ/CVE/tree/main/CVE-2025-65647 https://phpgurukul.com/ https://access.redhat.com/security/cve/cve-2025-65647