CVE-2025-70062

creationtimestamp| type| source ---|---|--- 2026-02-19 21:03:00+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mfaikly3r22h...

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...