Vulnerabilities > Phpgurukul

DATE CVE VULNERABILITY TITLE RISK
2022-05-11 CVE-2022-29006 SQL Injection vulnerability in PHPgurukul Directory Management System 1.0
Multiple SQL injection vulnerabilities via the username and password parameters in the Admin panel of Directory Management System v1.0 allows attackers to bypass authentication.
network
low complexity
phpgurukul CWE-89
7.5
2021-12-01 CVE-2021-43137 Cross-site Scripting vulnerability in PHPgurukul Hostel Management System 2.1
Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerability exits in hostel management system 2.1 via the name field in my-profile.php.
network
phpgurukul CWE-79
6.8
2021-06-22 CVE-2020-22164 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\check_availability.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22165 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22166 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\forgot-password.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22167 Cross-site Scripting vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php.
network
phpgurukul CWE-79
3.5
2021-06-22 CVE-2020-22168 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\change-emaild.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22169 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\appointment-history.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22170 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\get_doctor.php.
network
low complexity
phpgurukul CWE-89
5.0
2021-06-22 CVE-2020-22171 SQL Injection vulnerability in PHP 4.0
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\registration.php.
network
low complexity
phpgurukul CWE-89
5.0