Vulnerabilities > Phpgurukul > Dairy Farm Shop Management System > 1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-30 | CVE-2022-40943 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via bwdate-report-ds.php file. | 9.8 |
| 2022-09-30 | CVE-2022-40944 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via sales-report-ds.php file. | 9.8 |
| 2022-05-11 | CVE-2022-29007 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 Multiple SQL injection vulnerabilities via the username and password parameters in the Admin panel of Dairy Farm Shop Management System v1.0 allows attackers to bypass authentication. | 9.8 |
| 2022-02-11 | CVE-2020-36062 | Use of Hard-coded Credentials vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 Dairy Farm Shop Management System v1.0 was discovered to contain hardcoded credentials in the source code which allows attackers access to the control panel if compromised. | 9.8 |
| 2020-01-09 | CVE-2020-5308 | Cross-site Scripting vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php. | 6.1 |
| 2020-01-07 | CVE-2020-5307 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.0 PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName and ProductPrice parameters in add-product.php. | 9.8 |