CVE-2025-9834 | PHPGurukul Small CRM 4.0 /registration.php Username cross site scripting

Inserito da Angelo Barbosa | Set 2, 2025 | CVE

A vulnerability described as problematic has been identified in PHPGurukul Small CRM 4.0. Affected by this issue is some unknown functionality of the file /registration.php. Executing manipulation of the argument Username can lead to cross site scripting.

This vulnerability is registered as CVE-2025-9834. It is possible to launch the attack remotely. Furthermore, an exploit is available.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

CVE-2025-9834 | PHPGurukul Small CRM 4.0 /registration.php Username cross site scripting

Post correlati

CVE-2023-50783 | Apache Airflow up to 2.7.x Variable access control

CVE-2025-60164 | NewsMAN NewsMANApp Plugin up to 2.7.7 on WordPress cross-site request forgery

CVE-2020-26066 | Cisco Catalyst SD-WAN Manager up to 20.3.1 Web UI xml external entity reference (cisco-sa-vmanx3-vrZbOqqD)

CVE-2025-8315 | WP Easy Contact Plugin up to 4.0.1 on WordPress noaccess_msg cross site scripting