CVE-2026-3402

Sažetak

A security vulnerability has been detected in PHPGurukul Student Record Management System up to 1.0. This vulnerability affects unknown code of the file /edit-course.php. Such manipulation of the argument Course Short Name leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.

Reference

https://github.com/AS-AbdulSamad/CVEs/issues/2
https://phpgurukul.com/
https://vuldb.com/?ctiid.348297
https://vuldb.com/?id.348297
https://vuldb.com/?submit.763323

CVSS

Base:	3.3
Impact:	2.9
Exploitability:	6.4

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	MULTIPLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:M/C:N/I:P/A:N

Zadnje važnije ažuriranje

02-03-2026 - 01:16

Objavljeno

02-03-2026 - 01:16