Unrated severityNVD Advisory· Published Jan 22, 2026· Updated Jan 23, 2026
CVE-2025-70899
CVE-2025-70899
Description
PHPgurukul Online Course Registration v3.1 lacks Cross-Site Request Forgery (CSRF) protection on all administrative forms. An attacker can perform unauthorized actions on behalf of authenticated administrators by tricking them into visiting a malicious webpage.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 3.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.