ByteOS Network

NVD Vulnerability Details :

CVE-2025-7924

Analyzed

Source-cna@vuldb.com

Published At-21 Jul, 2025 | 11:15

Updated At-29 Jul, 2025 | 20:18

A vulnerability classified as problematic was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	5.1	MEDIUM	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Secondary	3.1	3.5	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Primary	3.1	5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Secondary	2.0	4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:P/A:N

Type: Secondary

Version: 4.0

Base score: 5.1

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Secondary

Version: 3.1

Base score: 3.5

Base severity: LOW

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Type: Primary

Version: 3.1

Base score: 5.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Type: Secondary

Version: 2.0

Base score: 4.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:N/I:P/A:N

CPE Matches

PHPGurukul LLP

>>online_banquet_booking_system>>1.0

cpe:2.3:a:phpgurukul:online_banquet_booking_system:1.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Secondary	cna@vuldb.com
CWE-94	Secondary	cna@vuldb.com

CWE ID: CWE-79

Type: Secondary

Source: cna@vuldb.com

CWE ID: CWE-94

Type: Secondary

Source: cna@vuldb.com

References

Hyperlink	Source	Resource
https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view	cna@vuldb.com	Exploit
https://github.com/LagonGit/ReportCVE/issues/1	cna@vuldb.com	Exploit Issue Tracking Third Party Advisory
https://phpgurukul.com/	cna@vuldb.com	Product
https://vuldb.com/?ctiid.317053	cna@vuldb.com	Permissions Required VDB Entry
https://vuldb.com/?id.317053	cna@vuldb.com	Third Party Advisory VDB Entry
https://vuldb.com/?submit.618882	cna@vuldb.com	Third Party Advisory VDB Entry
https://drive.google.com/file/d/1vrvOnw662FZ7CIfhr5EnXPLRqwTRkJqA/view	134c704f-9b21-4f2e-91b3-4a467353bcc0	Exploit
https://github.com/LagonGit/ReportCVE/issues/1	134c704f-9b21-4f2e-91b3-4a467353bcc0	Exploit Issue Tracking Third Party Advisory