CVE-2025-50489
published 2025-07-28CVE-2025-50489: Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpgurukul | student_result_management_system | — | — |