CVE-2025-6284

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
VulDBCNA
4.3 MEDIUM
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
phpgurukulcar_rental_portal
3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6
https://phpgurukul.com/
https://vuldb.com/?ctiid.313288
https://vuldb.com/?id.313288
https://vuldb.com/?submit.593775
https://medium.com/@kkfavas481/csrf-in-car-rental-portal-b202b3f2a4f6