CVE Details
Basic Information
| Title | PHPGurukul COVID19 Testing Management System search-report-result-result.php cross site scripting |
|---|---|
| Type | cve |
| Published | 2025-06-19T23:00:20.107Z |
| Last Seen |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | COVID19 Testing Management System |
| Version | 2021 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A cross-site scripting (XSS) vulnerability in the search-report-result.php file of PHPGurukul COVID19 Testing Management System 2021 allows remote attackers to inject arbitrary web scripts. This could lead to session hijacking or unauthorized actions on behalf of other users. |
|---|---|
| AI Severity | Medium |
| Vendor | PHPGurukul |
| Product | COVID19 Testing Management System |
| Affected Version | 2021 |
Affected Products
- PHPGurukul COVID19 Testing Management System 2021
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-79, CWE-94 |
| Bulletin Family |
References
Description
A vulnerability was found in PHPGurukul COVID19 Testing Management System 2021. It has been rated as problematic. This issue affects some unknown processing of the file /search-report-result.php. The manipulation of the argument q leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.