Skip to main content

User Registration Login And User Management System CVE-2020-24723

MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2020-11-18 cve@mitre.org
4.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.8 MEDIUM
AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Nov 18, 2020 - 13:15 nvd
MEDIUM 4.8

DescriptionNVD

Cross Site Scripting (XSS) vulnerability in the Registration page of the admin panel in PHPGurukul User Registration & Login and User Management System With admin panel 2.1.

AnalysisAI

Cross Site Scripting (XSS) vulnerability in the Registration page of the admin panel in PHPGurukul User Registration & Login and User Management System With admin panel 2.1. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Cross-Site Scripting (XSS) (CWE-79), which allows attackers to inject malicious scripts into web pages viewed by other users. Cross Site Scripting (XSS) vulnerability in the Registration page of the admin panel in PHPGurukul User Registration & Login and User Management System With admin panel 2.1. Affected products include: Phpgurukul User Registration \& Login And User Management System.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Sanitize all user input, use Content-Security-Policy headers, encode output contextually (HTML, JS, URL). Use frameworks with built-in XSS protection.

CVE-2025-45949 CRITICAL POC
9.8 Apr 28

A critical vulnerability was found in PHPGurukul User Registration & Login and User Management System V3.3 in the /login

CVE-2024-48283 CRITICAL POC
9.8 Oct 15

Phpgurukul User Registration & Login and User Management System 3.2 is vulnerable to SQL Injection in /admin//search-res

CVE-2020-25952 CRITICAL POC
9.8 Nov 16

SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System With admin panel 2.1 allo

CVE-2024-48282 HIGH POC
7.6 Oct 15

A SQL Injection vulnerability was found in /password-recovery.php of PHPGurukul User Registration & Login and User Manag

CVE-2024-48280 HIGH POC
7.6 Oct 15

A SQL Injection vulnerability was found in /search-result.php of PHPGurukul User Registration & Login and User Managemen

CVE-2024-48279 HIGH POC
7.6 Oct 15

A HTML Injection vulnerability was found in /search-result.php of PHPGurukul User Registration & Login and User Manageme

CVE-2025-2050 MEDIUM POC
6.9 Mar 07

A vulnerability classified as critical was found in PHPGurukul User Registration & Login and User Management System 3.3.

CVE-2024-11818 MEDIUM POC
6.9 Nov 27

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System

CVE-2024-11817 MEDIUM POC
6.9 Nov 26

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0. Rated medium severity

CVE-2024-28323 MEDIUM POC
6.5 Mar 14

The bwdates-report-result.php file in Phpgurukul User Registration & Login and User Management System 3.1 contains a pot

CVE-2025-28011 MEDIUM POC
6.1 Mar 13

A SQL Injection was found in loginsystem/change-password.php in PHPGurukul User Registration & Login and User Management

CVE-2024-25202 MEDIUM POC
6.1 Feb 28

Cross Site Scripting vulnerability in Phpgurukul User Registration & Login and User Management System 1.0 allows attacke

Share

CVE-2020-24723 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy