Is there a public PoC exploit available for CVE-2025-7791?

Yes, a public proof-of-concept exploit is available for CVE-2025-7791. Prioritise patching immediately. EPSS: 0.1%.

PHPGurukul Online Security Guards Hiring System CVE-2025-7791

Q: What is the CVSS score of CVE-2025-7791?

CVE-2025-7791 has a CVSS 4.0 base score of 2.0 (Low). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

LOW

Cross-site Scripting (XSS) (CWE-79)

2025-07-18 cna@vuldb.com

PHP XSS Online Security Guards Hiring System

2.0

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

2.0 LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Scope

Lifecycle Timeline

Analysis Generated

Apr 29, 2026 - 01:21 vuln.today

DescriptionCVE.org

A vulnerability was found in PHPGurukul Online Security Guards Hiring System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Stored cross-site scripting (XSS) in PHPGurukul Online Security Guards Hiring System 1.0 allows authenticated attackers to inject malicious scripts via the searchdata parameter in /admin/search.php, which are executed in the context of other users' browsers. The vulnerability requires user interaction (UI:P) and authenticated access (PR:L), limiting but not preventing exploitation. Publicly available exploit code exists, though real-world risk remains low due to authentication and interaction requirements combined with a very low EPSS score of 0.05%.

Technical ContextAI

The vulnerability resides in the PHP-based admin search functionality (/admin/search.php) where user-supplied input from the searchdata parameter is not properly sanitized or escaped before being output to the page. This is a classic CWE-79 (Improper Neutralization of Input During Web Page Generation) flaw common in legacy PHP applications that lack modern input validation and output encoding frameworks. The searchdata parameter is directly reflected or stored without HTML entity encoding, allowing attackers to embed JavaScript that executes when the page is rendered. The CVSS vector indicates this is a reflected or stored XSS with limited impact (VI:L - integrity only, no confidentiality or availability impact) because modern browsers have mitigations like Content Security Policy and Same-Origin Policy in place.

RemediationAI

No vendor-released patch has been identified at time of analysis. Organizations running this system should immediately upgrade to a patched version if available from phpgurukul.com, or implement the following compensating controls: (1) Restrict access to /admin/ endpoints to a whitelist of trusted IP addresses or VPN ranges - this eliminates remote access despite AV:N, with the trade-off of reduced administrative flexibility; (2) Disable the /admin/search.php functionality or remove the file entirely if search is not critical, eliminating the attack surface; (3) Implement HTML entity encoding of the searchdata parameter output using PHP's htmlspecialchars() or htmlentities() functions - this requires code modification but is a low-risk fix; (4) Deploy a Web Application Firewall (WAF) rule to strip or reject payloads containing script tags or event handlers in the searchdata parameter, with possible false positives on legitimate search terms. Contact the vendor at phpgurukul.com to request patched versions or security updates. Vulnerable instances should be inventoried and users warned not to click untrusted admin search results.

More from same product – last 7 days

CVE-2026-49952 CRITICAL Act Now POC

9.3 Jun 15

Authentication bypass in Discuz! X5.0 releases 20260320 through 20260501 allows unauthenticated remote attackers to acce

CVE-2026-49954 HIGH This Week POC

8.6 Jun 15

Authenticated remote code execution in Discuz! X5.0 releases 20260320 through 20260501 allows administrators to chain a

CVE-2026-49768 CRITICAL Act Now

9.8 Jun 15

Unauthenticated PHP Object Injection in the Happyforms WordPress plugin (versions <= 1.26.13) allows remote attackers to

CVE-2026-27053 CRITICAL Act Now

9.8 Jun 15

Unauthenticated PHP Object Injection in the Broadcast Live Video WordPress plugin (versions prior to 7.1.3) allows remot

CVE-2026-49104 CRITICAL Act Now

9.8 Jun 15

Unauthenticated PHP object injection in the WordPress plugin 'Integration for Keap/Infusionsoft and Contact Form 7, WPFo

CVE-2025-7791 vulnerability details – vuln.today

Back

PHPGurukul Online Security Guards Hiring System CVE-2025-7791

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code