CVE-2025-6287

A vulnerability classified as problematic was found in PHPGurukul COVID19 Testing Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /test-details.php of the component Take Action. The manipulation of the argument remark leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Published: Jun 20, 2025
Updated: Jun 27, 2025
CVE: CVE-2025-6287
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.4
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWEs:

CWE-94
CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
phpgurukul / covid19_testing_management_system	1.0	1.0.x

https://phpgurukul.com/
https://vuldb.com/?ctiid.313291
https://vuldb.com/?id.313291
https://vuldb.com/?submit.593878

Vulnerability Database

CVE-2025-6287

Deep Security Visibility Without the Complexity