Vulnerabilities

CVE-2025-28016

by Fred · 30/09/2025

A Reflected Cross-Site Scripting (XSS) vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the fname, lname, and contact parameters.

More information : https://github.com/rtnthakur/CVE/blob/main/PHPGurukul/User%20Registration%20&%20Login%20and%20User%20Management%20System%20With%20admin%20panel/XSS%20njection%20-%20edit-profile.md

Similar

Tags: Cybersecurity Alert