CVE-2025-28016 | PHPGurukul User Registration & Login and User Management System edit-profile.php cross site scripting

Inserito da Angelo Barbosa | Set 30, 2025 | CVE

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 3.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file loginsystem/edit-profile.php. Such manipulation of the argument fname/lname/contact leads to cross site scripting.

This vulnerability is traded as CVE-2025-28016. The attack may be launched remotely. There is no exploit available.

CVE-2025-28016 | PHPGurukul User Registration & Login and User Management System edit-profile.php cross site scripting

Post correlati

CVE-2024-55544 | ORing IAP-420 up to 2.01e command injection

CVE-2024-34273 | njwt up to 0.4.0 Parser.prototype.parse prototype pollution

CVE-2024-47303 | Livemesh Addons for Elementor Plugin up to 8.5 on WordPress cross site scripting

CVE-2024-29904 | CodeIgniter4 up to 4.4.6 Language infinite loop