CVE-2025-50491
published 2025-07-28CVE-2025-50491: Improper session invalidation in the component /banker/change-password.php of PHPGurukul Bank Locker Management System v1 allows attackers to execute a session…
high7.1CVSS 3.1
AVNACLPRNUIRSUCHILAN
Improper session invalidation in the component /banker/change-password.php of PHPGurukul Bank Locker Management System v1 allows attackers to execute a session hijacking attack.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpgurukul | bank_locker_management_system | — | — |