Primary

Context

PHPGurukul e-Diary Management System Session Hijacking Vulnerability

Vulnerability

Patched

A session hijacking vulnerability has been identified in the e-Diary Management System by PHPGurukul, specifically in version 1. The issue arises from improper session invalidation in the change-password component, allowing attackers to exploit this flaw and hijack user sessions.

Impact

Exploitation of this vulnerability allows for session hijacking, where an attacker can take over a user's session and potentially gain unauthorized access to their account or personal information.

Added: Jul 28, 2025, 6:20 PM

Updated: Jul 28, 2025, 6:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

1.3

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

1.3

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PHPGurukul e-Diary Management System Session Hijacking Vulnerability

Vulnerability

Impact

Affected Products

PHPGurukul e-Diary Management System

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating