exploitDog

GHSA-456h-6frm-3fqv

Опубликовано: 28 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

Ссылки

EPSS

Процентиль: 30%

0.00114

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-50489

CVSS3: 7.5

nvd

6 месяцев назад

Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

EPSS

Процентиль: 30%

0.00114

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20