Security Advisory

CVE-2025-28015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-13 00:00:00

Last updated 2025-03-19 18:44:08

Assigner mitre

State PUBLISHED

Description

A HTML Injection vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to execute arbitrary HTML code via the fname, lname, and contact parameters.

← Browse all CVEs View on cve.org ↗