CVE-2025-65647
Published
CVSS v3
4.3
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
Insecure Direct Object Reference (IDOR) in the Track order function in PHPGURUKUL Online Shopping Portal 2.1 allows information disclosure via the oid parameter.
CVE research archive: exploit PoCs, technical analysis, and mitigation strategies. For educational and responsible security research purposes only.
GitHub