CVE-2025-50693 — Authorization Bypass Through User-Controlled Key in Online DJ Booking Management System

CWE-639 — Authorization Bypass Through User-Controlled Key3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 69.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpgurukul Online DJ Booking Management System
Timeline
PublishedJun 24
Latest updateJun 26

Description

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Insecure Direct Object Reference (IDOR) in odms/request-details.php.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:LExploitability: 3.9 | Impact: 2.5

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5cfj-8jx9-xj6x: PHPGurukul Online DJ Booking Management System 2↗2025-06-26
â–¶
CVEList
CVE-2025-50693: PHPGurukul Online DJ Booking Management System 2↗2025-06-24
â–¶
CVE-2025-50693 — MEDIUM severity | cvebase