Khanakag-17 Library Management System index.php cross site scripting_CVE-2025-9755

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in Khanakag-17 Library Management System up to 60ed174506094dcd166e34904a54288e5d10ff24. This affects an unknown function of the file /index.php. The manipulation of the argument msg leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.

Basic Information

ID CVE-2025-9755

Source VulDB

Published Sep 1, 2025 at 01:32

Affected Product

Vendor Khanakag-17

Product Library Management System

Version 60ed174506094dcd166e34904a54288e5d10ff24

Affected Versions Khanakag-17 Library Management System 60ed174506094dcd166e34904a54288e5d10ff24

CWE Classification

CWE-79 CWE-94

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Khanakag-17 Library Management System up to 60ed174506094dcd166e34904a54288e5d10ff24. This affects an unknown function of the file /index.php. The manipulation of the argument msg leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.",
    "published": "2025-09-01T01:32:05.850Z",
    "modified": "2025-09-01T01:32:05.850Z",
    "type": "cve",
    "title": "Khanakag-17 Library Management System index.php cross site scripting",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.322056\nhttps://vuldb.com/?ctiid.322056\nhttps://vuldb.com/?submit.640660\nhttps://gist.github.com/0xSebin/147e7f57daf7f270d957927892b0a51d",
    "id": "CVE-2025-9755",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79",
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "Khanakag-17 Library Management System 60ed174506094dcd166e34904a54288e5d10ff24",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Library Management System",
    "version": "60ed174506094dcd166e34904a54288e5d10ff24",
    "vendor": "Khanakag-17",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}