CVE-2023-7055

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Notes Sharing System version 1.0

Description A problematic vulnerability has been found in the Contact Information Handler component of the PHPGurukul Online Notes Sharing System. The issue is related to the manipulation of the mobilenumber argument, which leads to improper access controls. This can be exploited remotely. The exploit has been disclosed to the public.

Recommendations For PHPGurukul Online Notes Sharing System version 1.0, consider restricting access to the /user/profile.php file until a patch is available. As a temporary workaround, avoid using the mobilenumber argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.