CVE-2025-28015
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-28015
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A HTML Injection vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to execute arbitrary HTML code via the fname, lname, and contact parameters.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHPGurukul User Registration & Login and User Management System 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHPGurukul User Registration & Login and User Management System是PHPGurukul公司的一个用户注册登录及用户管理系统。 PHPGurukul User Registration & Login and User Management System V3.3存在安全漏洞,该漏洞源于loginsystem/edit-profile.php中的HTML注入,允许远程攻击者通过fname、lname和contact参数执行任意HTML代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2025-28015
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-28015
请登录查看更多情报信息。
Same Patch Batch · n/a · 2025-03-13 · 20 CVEs total
| CVE-2024-22880 | Zadarma 安全漏洞 | |
| CVE-2024-55060 | Rafed CMS 安全漏洞 | |
| CVE-2025-25363 | Atlassian Plugin People Enterprise Mail Handler for Jira Data Center 安全漏洞 | |
| CVE-2025-25598 | InovaLogic CUSTOMER MONITOR 安全漏洞 | |
| CVE-2024-53406 | Espressif ESP-IDF 安全漏洞 | |
| CVE-2025-28011 | PHPGurukul User Registration & Login and User Management System 安全漏洞 | |
| CVE-2025-28010 | MODX Revolution 安全漏洞 | |
| CVE-2024-57062 | SoundCloud 安全漏洞 | |
| CVE-2025-25625 | FS S3150-8T2F 安全漏洞 | |
| CVE-2024-55198 | Celk Sistemas Celk Saude 安全漏洞 | |
| CVE-2025-29363 | Tenda RX3 安全漏洞 | |
| CVE-2025-29357 | Tenda RX3 安全漏洞 | |
| CVE-2024-57348 | PEcAn 安全漏洞 | |
| CVE-2025-29360 | Tenda RX3 安全漏洞 | |
| CVE-2025-29359 | Tenda RX3 安全漏洞 | |
| CVE-2025-29358 | Tenda RX3 安全漏洞 | |
| CVE-2024-28803 | Italtel i-MCS NFV 安全漏洞 | |
| CVE-2025-29361 | Tenda RX3 安全漏洞 | |
| CVE-2025-29362 | Tenda RX3 安全漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2025-28015
No comments yet