Cross Site Scripting Vulnerability in phpgurukul Complaint Management System
CVE-2025-57151
8.8HIGH
What is CVE-2025-57151?
The phpgurukul Complaint Management System version 2.0 is susceptible to Cross Site Scripting (XSS) attacks. This vulnerability allows attackers to inject malicious scripts into the admin/userprofile.php page via the fullname parameter. When exploited, it could enable unauthorized access or manipulation of user data, posing significant risks to application security and user privacy.
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved