CVE-2025-52074 – PHPGURUKUL Online Shopping Portal 2.1 contains ... (How to Fix)

Q: What is the severity of CVE-2025-52074?

CVE-2025-52074 has a CVSS score of 6.1 (MEDIUM). PHPGURUKUL Online Shopping Portal 2.1 contains a stored cross-site scripting vulnerability in the quantity parameter when adding products to cart. Attackers can inject malicious scripts that execute in users' browsers when viewing their cart. This affects all users of the vulnerable shopping portal.

📋 TL;DR

PHPGURUKUL Online Shopping Portal 2.1 contains a stored cross-site scripting vulnerability in the quantity parameter when adding products to cart. Attackers can inject malicious scripts that execute in users' browsers when viewing their cart. This affects all users of the vulnerable shopping portal.

💻 Affected Systems

Products:

PHPGURUKUL Online Shopping Portal

Versions: Version 2.1

Operating Systems: Any OS running PHP

Default Config Vulnerable: ⚠️ Yes

Notes: All installations of version 2.1 are vulnerable by default. The vulnerability exists in the cart functionality.

📦 What is this software?

Online Shopping Portal by Phpgurukul

View all CVEs affecting Online Shopping Portal →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal session cookies, redirect users to malicious sites, perform actions on behalf of authenticated users, or deploy malware through the shopping portal.

🟠

Likely Case

Session hijacking leading to account compromise, defacement of shopping cart pages, or credential theft from legitimate users.

🟢

If Mitigated

Limited impact with proper input validation and output encoding, though some functionality disruption may occur.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires user interaction (viewing cart) but no authentication. The PDF reference describes the vulnerability but doesn't include full exploit code.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown - check vendor for updates

Vendor Advisory: Not provided in CVE details

Restart Required: No

Instructions:

1. Contact PHPGURUKUL for patched version. 2. Replace vulnerable files with patched versions. 3. Test cart functionality after update.

🔧 Temporary Workarounds

Input Validation and Output Encoding

all

Implement server-side validation and HTML encoding for the quantity parameter

Modify cart processing code to validate quantity as integer and encode output

WAF Rule Implementation

all

Deploy web application firewall rules to block XSS payloads in quantity parameter

Configure WAF to detect and block scripts in POST parameters

🧯 If You Can't Patch

Implement Content Security Policy (CSP) headers to restrict script execution
Disable cart functionality or implement rate limiting on cart operations

🔍 How to Verify

Check if Vulnerable:

Test by submitting malicious script in quantity field (e.g., <script>alert('XSS')</script>) and check if it executes when viewing cart

Check Version:

Check PHPGURUKUL version in admin panel or configuration files

Verify Fix Applied:

Attempt same XSS payload and verify it's properly sanitized or blocked

📡 Detection & Monitoring

Log Indicators:

Unusual quantity values containing script tags or JavaScript
Multiple cart operations from single IP with varying payloads

Network Indicators:

POST requests to cart endpoint with script content in parameters

SIEM Query:

source="web_logs" AND (uri="/cart" OR uri="/add-to-cart") AND (param="quantity" AND value MATCHES "<script.*>.*</script>" OR "javascript:")

📊 Metadata

CVE ID: CVE-2025-52074

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.03% exploit probability (7.4th percentile)

Published: September 12, 2025

Last Updated: September 18, 2025

🔗 References

https://github.com/NullMinds/CVE-Hunting/blob/main/Online%20Shopping%20Portal/Stored%20XSS%20in%20Quantity%20Parameter.pdf Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-52074, you might also want to check these: