CVE-2025-7819

Low CVSS 2.4

Overview

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /create-pass.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to cross site scripting. It is possible to initiate the attack remotely.

CWE: CWE-79 Published: 2025-07-19T13:15:23.680

Risk analysis

This vulnerability is rated 🟢 LOW.

CVSS: 2.4 (LOW)
Detected tags: xss (tag impact: MODERATE)

Recommended actions:

Apply context-aware output encoding.
Enable Content-Security-Policy and HttpOnly/SameSite cookies.

Overview

Recommended tools

Tags