CVE-2024-55271

{"id": "CVE-2024-55271", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.5, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.1}]}, "published": "2026-02-17T17:21:03.690", "references": [{"url": "https://github.com/shoaibalam112/CVE-2024-55271/blob/main/README.md", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/shoaibalam112/Gym_Management_system", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "A Cross-Site Request Forgery (CSRF) vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint."}, {"lang": "es", "value": "Una vulnerabilidad de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) ha sido identificada en phpgurukul Gym Management System 1.0. Este problema est\u00e1 presente en la funcionalidad de actualizaci\u00f3n de perfil del Panel de Usuario, espec\u00edficamente en el endpoint /profile.php."}], "lastModified": "2026-02-23T16:06:41.923", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:phpgurukul:gym_management_system:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36717730-CA15-4B8D-8788-627C24C91349"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}