Security Advisory

CVE-2025-61255

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-21 00:00:00
Last updated 2025-10-21 20:11:40
Assigner mitre
State PUBLISHED

Description

Bank Locker Management System by PHPGurukul is affected by a Cross-Site Scripting (XSS) vulnerability via the /search parameter, where unsanitized input allows arbitrary HTML and JavaScript injection, potentially resulting in information disclosure and user redirection.