CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-4939 – PHPGurukul Credit Card Application Management System new-ccapplication.php cross site scripting
https://notcve.org/view.php?id=CVE-2025-4939
19 May 2025 — A vulnerability classified as problematic was found in PHPGurukul Credit Card Application Management System 1.0. This vulnerability affects unknown code of the file /admin/new-ccapplication.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/GIRISH05/credit-card-application-management-system-using-php-and-mysql/blob/main/Stored%20Cross-Site%20Scripting%20(XSS).md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47760
https://notcve.org/view.php?id=CVE-2025-47760
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47759
https://notcve.org/view.php?id=CVE-2025-47759
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47758
https://notcve.org/view.php?id=CVE-2025-47758
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47757
https://notcve.org/view.php?id=CVE-2025-47757
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47756
https://notcve.org/view.php?id=CVE-2025-47756
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47755
https://notcve.org/view.php?id=CVE-2025-47755
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47754
https://notcve.org/view.php?id=CVE-2025-47754
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47753
https://notcve.org/view.php?id=CVE-2025-47753
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47752
https://notcve.org/view.php?id=CVE-2025-47752
19 May 2025 — Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution. • https://jvn.jp/en/vu/JVNVU97228144 • CWE-787: Out-of-bounds Write •