CVE-2025-50487
published 2025-07-28CVE-2025-50487: Improper session invalidation in the component /bbdms/change-password.php of PHPGurukul Blood Bank & Donor Management System v2.4 allows attackers to execute a…
high7.1CVSS 3.1
AVNACLPRNUIRSUCHILAN
Improper session invalidation in the component /bbdms/change-password.php of PHPGurukul Blood Bank & Donor Management System v2.4 allows attackers to execute a session hijacking attack.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpgurukul | blood_bank_donor_management_system | — | — |