HIGH🇵🇱 Wersja polska

CVE-2025-50488

CVSS 7.1v3.1pub. 2025-07-28upd. 2026-07-05

Improper session invalidation in the component /library/change-password.php of PHPGurukul Online Library Management System v3.0 allows attackers to execute a session hijacking attack.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
  • Phpgurukul Online Library Management System

    APP
    Phpgurukul
    3.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-57119CRITICAL9.8PL ✓ten sam produkt

Eskalacja uprawnień w Phpgurukul Online Library Management System v.3.0

CVE-2025-57118CRITICAL9.8PL ✓ten sam produkt

Eskalacja uprawnień w PHPGurukul Online Library Management System v3.0

CVE-2025-7600LOW2.1ten sam produkt

A vulnerability, which was classified as critical, was found in PHPGurukul Online Library Management System 3....

CVE-2025-7601LOW2.0ten sam produkt

A vulnerability has been found in PHPGurukul Online Library Management System 3.0 and classified as problemati...

CVE-2025-2093LOW2.3ten sam produkt

A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been declared as problema...