CVE-2025-6284 MEDIUM

CVE-2025-6284: PHPGurukul Car Rental Portal cross-site request forgery

Vendor Phpgurukul
Product Car Rental Portal
Weakness CWE-352 · CSRF
Published June 19, 2025
Last update June 23, 2025

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Key dates

02Disclosure timeline

June 19, 2025 CVE published
June 23, 2025 Record updated

Related vulnerabilities

04Related CVE