CVE-2025-12312: Cross Site Scripting in PHPGurukul Curfew e-Pass Management System
A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. Impacted is an unknown function of the file view-pass-detail.php. This manipulation of the argument Fullname/Category causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used.
CVE-2025-12312: Cross Site Scripting in PHPGurukul Curfew e-Pass Management System
Description
A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. Impacted is an unknown function of the file view-pass-detail.php. This manipulation of the argument Fullname/Category causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-10-26T17:17:41.265Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 68ffca08ba6dffc5e209fff5
Added to database: 10/27/2025, 7:37:44 PM
Last updated: 10/27/2025, 7:37:47 PM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-61105: n/a
UnknownCVE-2025-61101: n/a
UnknownCVE-2025-58356: CWE-347: Improper Verification of Cryptographic Signature in edgelesssys constellation
HighCVE-2025-12311: Cross Site Scripting in PHPGurukul Curfew e-Pass Management System
MediumCVE-2025-12310: Improper Restriction of Excessive Authentication Attempts in VirtFusion
MediumActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.