9 matches found
Small CRM Session Hijacking Vulnerability
Small CRM is a customer relationship management system. Small CRM suffers from a session hijacking vulnerability that stems from the /crm/change-password.php component not terminating a session properly. No details of the vulnerability are available at this time...
PT-2025-31130 · Phpgurukul · Phpgurukul Doctor Appointment Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Doctor Appointment Management System version 1 Description: Improper session invalidation in the /doctor/change-password.php component allows attackers to execute a session hijacking attack. Recommendations: At the moment, there is...
PT-2025-31147 · Unknown · Phpgurukul Online Course Registration System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Online Course Registration version 3.1 Description: Improper session invalidation in the /crm/change-password.php component allows attackers to execute a session hijacking attack. Recommendations: Address the session invalidation...
PHPGurukul Small CRM 安全漏洞
Small CRM is a customer relationship management system. Small CRM suffers from a session hijacking vulnerability that stems from the /crm/change-password.php component not terminating a session properly. No details of the vulnerability are available at this time...
PT-2025-31135 · Phpgurukul · Phpgurukul Student Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Student Result Management System version 2.0 Description: The application suffers from improper session invalidation within the /srms/change-password.php component. This flaw enables attackers to perform session hijacking...
CVE-2025-45947
An issue in phpgurukul Online Banquet Booking System V1.2 allows an attacker to execute arbitrary code via the /obbs/change-password.php file of the My Account - Change Password component...
CVE-2025-45953
A vulnerability was found in PHPGurukul Hostel Management System 2.1 in the /hostel/change-password.php file of the user panel - Change Password component. Improper handling of session data allows a Session Hijacking attack, exploitable remotely...
CVE-2025-45953
A vulnerability was found in PHPGurukul Hostel Management System 2.1 in the /hostel/change-password.php file of the user panel - Change Password component. Improper handling of session data allows a Session Hijacking attack, exploitable remotely...
PT-2025-18112 · Unknown · Phpgurukul User Registration & Login/User Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul User Registration & Login and User Management System version 3.3 Description: A critical issue was found in the /loginsystem/change-password.php file of the user panel's Change Password component. Improper handling of session data...