Improper session invalidation in the component /library/change-password.php of PHPGurukul Online Library Management System v3.0 allows attackers to execute a session hijacking attack.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:NPhpgurukul Online Library Management System
APPPhpgurukul3.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2025-57119CRITICAL9.8PL ✓ten sam produkt
Eskalacja uprawnień w Phpgurukul Online Library Management System v.3.0
CVE-2025-57118CRITICAL9.8PL ✓ten sam produkt
Eskalacja uprawnień w PHPGurukul Online Library Management System v3.0
CVE-2025-7600LOW2.1ten sam produkt
A vulnerability, which was classified as critical, was found in PHPGurukul Online Library Management System 3....
CVE-2025-7601LOW2.0ten sam produkt
A vulnerability has been found in PHPGurukul Online Library Management System 3.0 and classified as problemati...
CVE-2025-2093LOW2.3ten sam produkt
A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been declared as problema...