A vulnerability classified as problematic was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view | Exploit |
https://github.com/LagonGit/ReportCVE/issues/1 | Exploit Issue Tracking Third Party Advisory |
https://phpgurukul.com/ | Product |
https://vuldb.com/?ctiid.317053 | Permissions Required VDB Entry |
https://vuldb.com/?id.317053 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.618882 | Third Party Advisory VDB Entry |
https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view | Exploit |
https://github.com/LagonGit/ReportCVE/issues/1 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
29 Jul 2025, 20:18
Type | Values Removed | Values Added |
---|---|---|
References | () https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view - Exploit | |
References | () https://github.com/LagonGit/ReportCVE/issues/1 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://phpgurukul.com/ - Product | |
References | () https://vuldb.com/?ctiid.317053 - Permissions Required, VDB Entry | |
References | () https://vuldb.com/?id.317053 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.618882 - Third Party Advisory, VDB Entry | |
Summary |
|
|
First Time |
Phpgurukul online Banquet Booking System
Phpgurukul |
|
CPE | cpe:2.3:a:phpgurukul:online_banquet_booking_system:1.0:*:*:*:*:*:*:* |
21 Jul 2025, 13:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view - | |
References | () https://github.com/LagonGit/ReportCVE/issues/1 - |
21 Jul 2025, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-21 11:15
Updated : 2025-07-29 20:18
NVD link : CVE-2025-7924
Mitre link : CVE-2025-7924
CVE.ORG link : CVE-2025-7924
JSON object : View
Products Affected
phpgurukul
- online_banquet_booking_system