CVE-2025-28016 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Reflected Cross-Site Scripting (XSS) vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management S…
Medium CVSS: 4.8

CVE-2025-28016

A Reflected Cross-Site Scripting (XSS) vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the fname, lname, and contact parameters.
Vendor
Phpgurukul
Product
User Registration \& Login And User Management System
CWE
CWE-79
Yayın Tarihi
2025-09-30 15:15:48
Güncelleme
2025-10-07 13:42:23
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 User Registration \& Login And User Management System MEDIUM Phpgurukul 2025

Referanslar

https://github.com/rtnthakur/CVE/blob/main/PHPGurukul/User%20Registration%20&%20Login%20and%20User%20Management%20System%20With%20admin%20panel/XSS%20njection%20-%20edit-profile.md