PHPGurukul Car Rental Project search.php cross site scripting_CVE-2025-10794

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A flaw has been found in PHPGurukul Car Rental Project 3.0. Affected by this issue is some unknown functionality of the file /carrental/search.php. Executing manipulation of the argument autofocus can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been published and may be used.

Basic Information

ID CVE-2025-10794

Source VulDB

Published Sep 22, 2025 at 10:32

Affected Product

Vendor PHPGurukul

Product Car Rental Project

Version 3.0

Affected Versions PHPGurukul Car Rental Project 3.0

CWE Classification

CWE-79 CWE-94

References

{
    "lastseen": "",
    "description": "A flaw has been found in PHPGurukul Car Rental Project 3.0. Affected by this issue is some unknown functionality of the file /carrental/search.php. Executing manipulation of the argument autofocus can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been published and may be used.",
    "published": "2025-09-22T10:32:09.461Z",
    "modified": "2025-09-22T10:32:09.461Z",
    "type": "cve",
    "title": "PHPGurukul Car Rental Project search.php cross site scripting",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.325151\nhttps://vuldb.com/?ctiid.325151\nhttps://vuldb.com/?submit.654067\nhttps://github.com/tddgns/cve/issues/1\nhttps://phpgurukul.com/",
    "id": "CVE-2025-10794",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79",
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "PHPGurukul Car Rental Project 3.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Car Rental Project",
    "version": "3.0",
    "vendor": "PHPGurukul",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}