CVE-2025-6284

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpgurukul:car_rental_portal:3.0:*:*:*:*:*:*:*

History

26 Jun 2025, 21:36

Type Values Removed Values Added
CPE cpe:2.3:a:phpgurukul:car_rental_portal:3.0:*:*:*:*:*:*:*
References () https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6 - () https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6 - Exploit
References () https://phpgurukul.com/ - () https://phpgurukul.com/ - Product
References () https://vuldb.com/?ctiid.313288 - () https://vuldb.com/?ctiid.313288 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.313288 - () https://vuldb.com/?id.313288 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.593775 - () https://vuldb.com/?submit.593775 - Third Party Advisory, VDB Entry
First Time Phpgurukul car Rental Portal
Phpgurukul

23 Jun 2025, 20:16

Type Values Removed Values Added
References () https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6 - () https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6 -
Summary
  • (es) Se encontró una vulnerabilidad en PHPGurukul Car Rental Portal 3.0. Se ha declarado problemática. Esta vulnerabilidad afecta a código desconocido. La manipulación provoca cross-site request forgery. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.

19 Jun 2025, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-06-19 23:15

Updated : 2025-06-26 21:36


NVD link : CVE-2025-6284

Mitre link : CVE-2025-6284

CVE.ORG link : CVE-2025-6284


JSON object : View

Products Affected

phpgurukul

  • car_rental_portal
CWE
CWE-352

Cross-Site Request Forgery (CSRF)

CWE-862

Missing Authorization