CVE-2025-2093 | PHPGurukul Online Library Management System 3.0 /change-password.php email/phone number password recovery

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /change-password.php. The manipulation of the argument email/phone number leads to weak password recovery.

This vulnerability is known as CVE-2025-2093. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-2093 | PHPGurukul Online Library Management System 3.0 /change-password.php email/phone number password recovery

Post correlati

CVE-2024-31806 | Totolink EX200 4.0.3c.7646_B20201211 RebootSystem denial of service

CVE-2024-12344 | TP-Link VN020 F3v(T) TT_V6.2.1021 FTP USER Command memory corruption

CVE-2021-47488 | Linux Kernel up to 5.10.76/5.14.15 cgroup_get memory leak (01599bf7cc2b/b529f88d9388/04f8ef5643bc)

CVE-2023-6960 | Sciener TTLock App Key access control (VU#949046)