CVE-2025-50489 – PHPGurukul Student Result Management System Session Hijacking Vulnerability

July 28, 2025

CVE ID : CVE-2025-50489

Published : July 28, 2025, 6:15 p.m. | 6 hours, 22 minutes ago

Description : Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43023 – HP Linux Imaging and Printing Software DSA Code Signing Key Weakness

Next Article CVE-2025-54418 – CodeIgniter ImageMagick Command Injection Vulnerability

Highlights

CVE-2025-1752 – Llama Index Denial of Service Vulnerability

May 10, 2025

CVE ID : CVE-2025-1752

Published : May 10, 2025, 2:15 p.m. | 1 hour, 24 minutes ago

Description : A Denial of Service (DoS) vulnerability has been identified in the KnowledgeBaseWebReader class of the run-llama/llama_index project, affecting version ~ latest(v0.12.15). The vulnerability arises due to inappropriate secure coding measures, specifically the lack of proper implementation of the max_depth parameter in the get_article_urls function. This allows an attacker to exhaust Python’s recursion limit through repeated function calls, leading to resource consumption and ultimately crashing the Python process.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Windows 11 hotkey conflicts are a pain — PowerToys just introduced a smarter way to manage them

September 4, 2025

Take the State of HTML survey today

July 30, 2025

Germany wants Google and Apple to ban China’s “illegal” DeepSeek AI — after it failed to comply with data protection laws

July 14, 2025

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

CVE-2025-50489 – PHPGurukul Student Result Management System Session Hijacking Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2023-53142 – “Ice: Buffer Overflow in ice_get_module_eeprom()”

CVE-2025-3993 – TOTOLINK N150RT Buffer Overflow Vulnerability

Automate AIOps with SageMaker Unified Studio Projects, Part 2: Technical implementation

How to Use Snipping Tool in Windows 11

CVE-2025-1752 – Llama Index Denial of Service Vulnerability

Windows 11 hotkey conflicts are a pain — PowerToys just introduced a smarter way to manage them

Take the State of HTML survey today

Germany wants Google and Apple to ban China’s “illegal” DeepSeek AI — after it failed to comply with data protection laws

CVE-2025-50489 – PHPGurukul Student Result Management System Session Hijacking Vulnerability

Related Posts