Improper session invalidation in the component /carrental/update-password.php of PHPGurukul Car Rental Project v3.0 allows attackers to execute a session hijacking attack.
Published July 28, 2025.
Phpgurukul E-diary Management System
