CRITICAL🇵🇱 Wersja polska

CVE-2025-69990

CVSS 9.1v3.1pub. 2026-01-13upd. 2026-01-16

phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file.php. The parameter file can cause any file to be deleted.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
  • Phpgurukul News Portal

    APP
    Phpgurukul
    4.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-69992CRITICAL9.8PL ✓ten sam produkt

Nieautoryzowany upload pliku dowolnego formatu w Phpgurukul News Portal

CVE-2025-69991CRITICAL9.8PL ✓ten sam produkt

SQL Injection w Phpgurukul News Portal V4.1 (check_availablity.php)

CVE-2025-4874MEDIUM6.9ten sam produkt

A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this i...

CVE-2025-4873MEDIUM6.9ten sam produkt

A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vuln...

CVE-2025-4880MEDIUM6.9ten sam produkt

A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vuln...