exploitDog

CVE-2025-6284

Опубликовано: 19 июн. 2025

Источник: nvd

CVSS3: 4.3

CVSS2: 5

EPSS Низкий

Описание

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Ссылки

https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6
Exploit
https://phpgurukul.com/
Product
https://vuldb.com/?ctiid.313288
Permissions Required
VDB Entry
https://vuldb.com/?id.313288
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.593775
Third Party Advisory
VDB Entry
https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:car_rental_portal:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.00041

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-pvq6-pwp8-p2x7

CVSS3: 4.3

github

8 месяцев назад

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 12%

0.00041

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352

Уязвимость CVE-2025-6284