Vulnerabilities > Phpgurukul > Daily Expense Tracker System > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-02-12 CVE-2025-25351 SQL Injection vulnerability in PHPgurukul Daily Expense Tracker System 1.1
PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense.php via the dateexpense parameter.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-02-12 CVE-2025-25349 SQL Injection vulnerability in PHPgurukul Daily Expense Tracker System 1.1
PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense.php via the costitem parameter.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2020-03-05 CVE-2020-10106 SQL Injection vulnerability in PHPgurukul Daily Expense Tracker System 1.0
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to SQL injection, as demonstrated by the email parameter in index.php or register.php.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8