Improper session invalidation in the component /crm/change-password.php of PHPGurukul Online Course Registration v3.1 allows attackers to execute a session hijacking attack.
Published July 28, 2025.
Phpgurukul Online Course Registration
