A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php of the component Searchbar. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-265213 was assigned to this vulnerability.
References
| Link | Resource |
|---|---|
| https://github.com/BurakSevben/CVEs/blob/main/Directory%20Management%20System/Directory%20Management%20System%20-%20Cross-Site-Scripting%20-%202.md | Exploit Third Party Advisory |
| https://vuldb.com/?ctiid.265213 | Permissions Required VDB Entry |
| https://vuldb.com/?id.265213 | Permissions Required VDB Entry |
| https://vuldb.com/?submit.339123 | Third Party Advisory VDB Entry |
| https://github.com/BurakSevben/CVEs/blob/main/Directory%20Management%20System/Directory%20Management%20System%20-%20Cross-Site-Scripting%20-%202.md | Exploit Third Party Advisory |
| https://vuldb.com/?ctiid.265213 | Permissions Required VDB Entry |
| https://vuldb.com/?id.265213 | Permissions Required VDB Entry |
| https://vuldb.com/?submit.339123 | Third Party Advisory VDB Entry |
Configurations
History
17 Jun 2026, 08:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/BurakSevben/CVEs/blob/main/Directory%20Management%20System/Directory%20Management%20System%20-%20Cross-Site-Scripting%20-%202.md - Exploit, Third Party Advisory | |
| References | () https://vuldb.com/?ctiid.265213 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.265213 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?submit.339123 - Third Party Advisory, VDB Entry | |
| First Time |
Phpgurukul
Phpgurukul directory Management System |
|
| CPE | cpe:2.3:a:phpgurukul:directory_management_system:1.0:*:*:*:*:*:*:* |
21 Nov 2024, 09:47
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/BurakSevben/CVEs/blob/main/Directory%20Management%20System/Directory%20Management%20System%20-%20Cross-Site-Scripting%20-%202.md - | |
| References | () https://vuldb.com/?ctiid.265213 - | |
| References | () https://vuldb.com/?id.265213 - | |
| References | () https://vuldb.com/?submit.339123 - |
04 Jun 2024, 19:21
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
20 May 2024, 10:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-05-20 10:15
Updated : 2026-06-17 08:15
NVD link : CVE-2024-5137
Mitre link : CVE-2024-5137
CVE.ORG link : CVE-2024-5137
JSON object : View
Products Affected
phpgurukul
- directory_management_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
