PT-2025-30056 · Phpgurukul · Phpgurukul Online Security Guards Hiring System
Ic0Rner
·
Published
2025-07-18
·
Updated
2025-07-18
·
CVE-2025-7791
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
PHPGurukul Online Security Guards Hiring System version 1.0
Description
A vulnerability exists in PHPGurukul Online Security Guards Hiring System that allows for cross site scripting. The issue is located in the
/admin/search.php file, where manipulation of the searchdata parameter can trigger the vulnerability. The attack can be initiated remotely. The exploit has been disclosed to the public.Recommendations
As a temporary workaround, consider restricting access to the
/admin/search.php file until a patch is available.
Sanitize the searchdata parameter to prevent the injection of malicious scripts.Exploit
Fix
Code Injection
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Phpgurukul Online Security Guards Hiring System