PHPGurukul Time Table Generator System profile.php cross site scripting

July 21, 2025 invoker category_cve

CVE Details

Basic Information

Title	PHPGurukul Time Table Generator System profile.php cross site scripting
Type	cve
Published	2025-07-21T21:32:07.345Z
Modified	2025-07-21T21:32:07.345Z

Product Information

Vendor	PHPGurukul
Product	Time Table Generator System
Version	1.0

CVSS Information

Base Score	5.1 (MEDIUM)
Attack Vector	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Affected Products

PHPGurukul Time Table Generator System 1.0

Additional Information

CWE List	CWE-79, CWE-94
Source	VulDB

Description

A vulnerability, which was classified as problematic, was found in PHPGurukul Time Table Generator System 1.0. Affected is an unknown function of the file /admin/profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

References

https://vuldb.com/?id.317082
https://vuldb.com/?ctiid.317082
https://vuldb.com/?submit.619141
https://github.com/LagonGit/ReportCVE/issues/6
https://drive.google.com/file/d/19C2IWKR38Qqw7RLNn1nWzvWv4GszgPnU/view
https://phpgurukul.com/

View Full CVE Details