A critical vulnerability was found in PHPGurukul User Registration & Login and User Management System V3.3 in the /loginsystem/change-password.php file of the user panel - Change Password component. Improper handling of session data allows a Session Hijacking attack, exploitable remotely and leading to account takeover.
The vulnerability (CWE-384) results from improper session data management in the password change component, located in the /loginsystem/change-password.php file. An attacker can remotely, without authentication and without user interaction, abuse the session mechanism in such a way as to gain access to another user's session. This leads to full account takeover.
An attacker can hijack the account of any user in the system, gaining full access to their data and user panel functions. Due to the network vector and lack of requirements for permissions or victim interaction, the attack is particularly dangerous.
Patches available from the vendor should be applied according to references. It is recommended to monitor the vendor's official repository (phpgurukul.com) to download the updated software version and implement secure session management mechanisms (including session identifier regeneration after password change).
PHPGurukul User Registration & Login and User Management System version V3.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HPhpgurukul User Registration \& Login And User Management System
APPPhpgurukul3.3
Related vulnerabilities
SQL Injection w Phpgurukul User Management System 3.2 – parametr searchkey
SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System With admin pane...
A SQL Injection vulnerability was found in /search-result.php of PHPGurukul User Registration & Login and User...
A HTML Injection vulnerability was found in /search-result.php of PHPGurukul User Registration & Login and Use...
A SQL Injection vulnerability was found in /password-recovery.php of PHPGurukul User Registration & Login and ...