CVE-2025-6301 – PHPGurukul Notice Board System Cross-Site Scripting Vulnerability

June 20, 2025

CVE ID : CVE-2025-6301

Published : June 20, 2025, 3:15 a.m. | 3 hours, 26 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in PHPGurukul Notice Board System 1.0. This issue affects some unknown processing of the file /admin/manage-notices.php of the component Add Notice. The manipulation of the argument Title/Description leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6304 – Code-projects Online Shoe Store SQL Injection

Next Article CVE-2025-6299 – TOTOLINK N150RT Os Command Injection Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-6301 – PHPGurukul Notice Board System Cross-Site Scripting Vulnerability

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

IBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug

OIN marks 20 years of defending Linux and open source from patent trolls

Distribution Release: Kali Linux 2025.2

Alienware’s rumored laptop could be the first to feature NVIDIA’s revolutionary Arm-based APU

The toughest phone I’ve tested packs a ridiculously long battery (and it’s $180 off)

CVE-2025-46420 – Libsoup Memory Leak Vulnerability

Google komt met Android-updates voor aangevallen FreeType-lek

CVE-2025-4151 – PHPGurukul Curfew e-Pass Management System SQL Injection Vulnerability

CVE-2025-5712 – SourceCodester Open Source Clinic Management System SQL Injection

CVE-2025-6301 – PHPGurukul Notice Board System Cross-Site Scripting Vulnerability

Related Posts