First published: Sun Mar 23 2025(Updated: )
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /product.php. The manipulation of the argument artname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
PHPGurukul Art Gallery Management System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-2645 has been classified as problematic due to its potential for cross-site scripting attacks.
To fix CVE-2025-2645, ensure proper input validation and sanitization for the 'artname' parameter in the /product.php file.
CVE-2025-2645 can facilitate cross-site scripting (XSS) attacks, allowing attackers to inject malicious scripts into web pages.
CVE-2025-2645 affects PHPGurukul Art Gallery Management System version 1.0.
Exploiting CVE-2025-2645 can lead to unauthorized data manipulation and user session hijacking through XSS.