Phpgurukul Online Library Management System vulnerabilities

6 known vulnerabilities affecting phpgurukul/online_library_management_system.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM2LOW1

Vulnerabilities

Page 1 of 1
CVE-2025-57119CRITICALCVSS 9.8v3.02025-09-16
CVE-2025-57119 [CRITICAL] CWE-250 CVE-2025-57119: An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function
nvd
CVE-2025-57118CRITICALCVSS 9.8v3.02025-09-15
CVE-2025-57118 [CRITICAL] CWE-269 CVE-2025-57118: An issue in PHPGurukul Online-Library-Management-System v3.0 allows an attacker to escalate privileg An issue in PHPGurukul Online-Library-Management-System v3.0 allows an attacker to escalate privileges via the index.php
nvd
CVE-2025-50488HIGHCVSS 7.1v3.02025-07-28
CVE-2025-50488 [HIGH] CWE-613 CVE-2025-50488: Improper session invalidation in the component /library/change-password.php of PHPGurukul Online Lib Improper session invalidation in the component /library/change-password.php of PHPGurukul Online Library Management System v3.0 allows attackers to execute a session hijacking attack.
nvd
CVE-2025-7600MEDIUMCVSS 5.3v3.02025-07-14
CVE-2025-7600 [MEDIUM] CWE-74 CVE-2025-7600: A vulnerability, which was classified as critical, was found in PHPGurukul Online Library Management A vulnerability, which was classified as critical, was found in PHPGurukul Online Library Management System 3.0. This affects an unknown part of the file /admin/student-history.php. The manipulation of the argument stdid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
cvelistv5nvd
CVE-2025-7601MEDIUMCVSS 5.1v3.02025-07-14
CVE-2025-7601 [MEDIUM] CWE-79 CVE-2025-7601: A vulnerability has been found in PHPGurukul Online Library Management System 3.0 and classified as A vulnerability has been found in PHPGurukul Online Library Management System 3.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/student-history.php. The manipulation of the argument stdid leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may b
cvelistv5nvd
CVE-2025-2093LOWCVSS 2.3v3.02025-03-07
CVE-2025-2093 [LOW] CWE-640 CVE-2025-2093: A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been declared a A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /change-password.php. The manipulation of the argument email/phone number leads to weak password recovery. The attack can be launched remotely. The complexity of an attac
cvelistv5nvd