Submit #616888: PHPGurukul Complaint Management System 2.0 Cross-Site Request Forgeryinfo

TitlePHPGurukul Complaint Management System 2.0 Cross-Site Request Forgery
DescriptionA Cross-Site Request Forgery (CSRF) vulnerability exists in the Complaint Management System V2.0. Source code address:https://phpgurukul.com/complaint-management-sytem/ The backend lacks any defensive measures against CSRF, such as CSRF tokens or HTTP Referer verification. If the victim is an administrator or privileged user, the consequences may include gaining complete control over the web application, such as deleting or modifying data. We give an example. Deleting a user also deletes related complaints submitted by the user, severely compromises the integrity and availability of the system.
Source⚠️ https://github.com/N1n3b9S/cve/issues/8
User
 Anonymous User
Submission07/16/2025 09:26 (9 months ago)
Moderation07/18/2025 21:20 (2 days later)
StatusAccepted
VulDB entry316938 [PHPGurukul Complaint Management System 2.0 cross-site request forgery]
Points20

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!