Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
3.5
PhpGurukul Gym Management System Profile Update Security Risk
CVE-2024-55271
Summary
Attackers can manipulate user profiles by tricking users into performing unintended actions on the phpgurukul Gym Management System. This can lead to unauthorized changes to user information. Update the system to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| phpgurukul | gym_management_system | 1.0 | – |
Original title
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifica...
Original description
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint.
nvd CVSS3.1
3.5
Vulnerability type
CWE-352
Cross-Site Request Forgery (CSRF)
- https://github.com/shoaibalam112/CVE-2024-55271/blob/main/README.md Exploit Third Party Advisory
- https://github.com/shoaibalam112/Gym_Management_system Exploit Third Party Advisory
Published: 17 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026