Vulnerability Details CVE-2025-50484
Improper session invalidation in the component /crm/change-password.php of PHPGurukul Small CRM v3.0 allows attackers to execute a session hijacking attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.3%
CVSS Severity
CVSS v3 Score 7.1
References
Products affected by CVE-2025-50484
-
cpe:2.3:a:phpgurukul:small_crm:3.0