exploitDog

GHSA-mg64-q56f-gxr3

Опубликовано: 28 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

Ссылки

EPSS

Процентиль: 30%

0.00114

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-50490

CVSS3: 7.5

nvd

6 месяцев назад

Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

EPSS

Процентиль: 30%

0.00114

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20