CNNVD-202601-2547 Information

CNNVD ID

CNNVD-202601-2547

Related CVE

CVE-2025-70891

• CNNVD Published: 2026-01-15

Description (Chinese)

PHPGurukul Cyber Cafe Management System是PHPGurukul公司的一个网吧管理系统。 PHPGurukul Cyber Cafe Management System v1.0版本存在安全漏洞，该漏洞源于add-users.php端点的uadd参数未对用户输入进行充分清理或编码，可能导致存储型跨站脚本攻击。

Description (English)

PHPGurukul Cyber Cafe Management Systems is a cybercafe management system of PHPGurukul. PHPGurukul Cyber Café Management System v1.0 has a security loophole, which originates from the uaddd parameters of the add-users.php endpoint that do not adequately clean or encode user input and may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2026-01-15

Last Modified

2026-02-24

References

https://github.com/efekaanakkar/Cyber-Cafe-Management-System-CVEs/tree/main/CVE-2025-70891 https://phpgurukul.com/cyber-cafe-management-system-using-php-mysql https://access.redhat.com/security/cve/cve-2025-70891