PT-2025-30694 · Phpgurukul · Autotaxi Stand Management System

Longlagon

Published

2025-07-24

Updated

2025-07-25

CVE-2025-8115

Report an issue

CVSS v2.0

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions:

PHPGurukul Taxi Stand Management System version 1.0

Description:

A cross site scripting issue exists due to the manipulation of the `registrationnumber`/`licensenumber` argument in the /admin/new-autoortaxi-entry-form.php file. The attack can be launched remotely. The exploit has been disclosed to the public.

Recommendations:

Address the manipulation of the `registrationnumber` and `licensenumber` arguments in the /admin/new-autoortaxi-entry-form.php file.

Exploit

Fix

XSS

Code Injection

Weakness Enumeration

CWE-79CWE-94

Related Identifiers

CVE-2025-8115

Affected Products

Autotaxi Stand Management System

PT-2025-30694 · Phpgurukul · Autotaxi Stand Management System

Weakness Enumeration

Related Identifiers

Affected Products

References · 9