CVE Details
Basic Information
| Title | PHPGurukul Directory Management System Searchbar admin-profile.php cross site scripting |
|---|---|
| Type | cve |
| Published | 2024-05-20T09:31:04.377Z |
| Modified | 2024-08-01T21:03:10.745Z |
Product Information
| Vendor | PHPGurukul |
|---|---|
| Product | Directory Management System |
| Version | 1.0 |
CVSS Information
| Base Score | 5.1 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
AI Analysis
| AI Description | A medium severity cross-site scripting vulnerability in PHPGurukul Directory Management System’s Searchbar allows remote attackers to inject scripts, potentially stealing user data or hijacking sessions. |
|---|---|
| AI Severity | Medium |
| AI Vendor | PHPGurukul |
| AI Product | Directory Management System |
| AI Version | 1.0 |
Affected Products
- PHPGurukul Directory Management System 1.0
Additional Information
| CWE List | CWE-79 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php of the component Searchbar. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-265213 was assigned to this vulnerability.