How to fix EUVD-2025-28726?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Is PHP affected by EUVD-2025-28726?

Organizations using A vulnerability classified as problematic should be aware of moderate risk from CVE-2025-6352 rated CVSS 5.3. Exploitation could compromise the security of affected deployments. Proof-of-concept code is publicly available.

PHP EUVD-2025-28726

| CVE-2025-6352 MEDIUM

Direct Request ('Forced Browsing') (CWE-425)

2025-06-20 [email protected]

PHP Information Disclosure Automated Voting System

5.3

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 15, 2026 - 00:19 vuln.today

EUVD ID Assigned

Mar 15, 2026 - 00:19 euvd

EUVD-2025-28726

PoC Detected

Oct 23, 2025 - 12:19 vuln.today

Public exploit code

CVE Published

Jun 20, 2025 - 16:15 nvd

MEDIUM 5.3

DescriptionNVD

A vulnerability classified as problematic has been found in code-projects Automated Voting System 1.0. Affected is an unknown function of the file /vote.php of the component Backend. The manipulation leads to direct request. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

A security vulnerability in A vulnerability classified as problematic (CVSS 5.3). Risk factors: public PoC available.

Technical ContextAI

Vulnerability type not specified by vendor. Affects A vulnerability classified as problematic.

RemediationAI

Monitor vendor channels for patch availability.

EUVD-2025-28726 vulnerability details – vuln.today

Back

PHP EUVD-2025-28726

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code