Vulnerabilities > Phpgurukul

DATE CVE VULNERABILITY TITLE RISK
2023-10-26 CVE-2023-5794 SQL Injection vulnerability in PHPgurukul Online Railway Catering Management System 1.0
A vulnerability was found in PHPGurukul Online Railway Catering System 1.0.
network
low complexity
phpgurukul CWE-89
critical
9.8
2023-10-25 CVE-2023-46583 Cross-site Scripting vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0
Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field.
network
low complexity
phpgurukul CWE-79
6.1
2023-10-25 CVE-2023-46584 SQL Injection vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0
SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint.
network
low complexity
phpgurukul CWE-89
critical
9.8
2023-09-30 CVE-2023-5303 Cross-site Scripting vulnerability in PHPgurukul Online Banquet Booking System 1.0
A vulnerability, which was classified as problematic, was found in Online Banquet Booking System 1.0.
network
low complexity
phpgurukul CWE-79
6.1
2023-09-21 CVE-2023-41614 Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0
A stored cross-site scripting (XSS) vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter.
network
low complexity
phpgurukul CWE-79
4.8
2023-09-11 CVE-2023-41593 Cross-site Scripting vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1
Multiple cross-site scripting (XSS) vulnerabilities in Dairy Farm Shop Management System Using PHP and MySQL v1.1 allow attackers to execute arbitrary web scripts and HTML via a crafted payload injected into the Category and Category Field parameters.
network
low complexity
phpgurukul CWE-79
5.4
2023-09-08 CVE-2023-41575 Cross-site Scripting vulnerability in PHPgurukul Blood Bank & Donor Management System 2.2
Multiple stored cross-site scripting (XSS) vulnerabilities in /bbdms/sign-up.php of Blood Bank & Donor Management v2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Full Name, Message, or Address parameters.
network
low complexity
phpgurukul CWE-79
5.4
2023-09-08 CVE-2023-41594 SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1
Dairy Farm Shop Management System Using PHP and MySQL v1.1 was discovered to contain multiple SQL injection vulnerabilities in the Login function via the Username and Password parameters.
network
low complexity
phpgurukul CWE-89
7.5
2023-09-08 CVE-2023-41615 SQL Injection vulnerability in PHPgurukul ZOO Management System 1.0
Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields.
network
low complexity
phpgurukul CWE-89
critical
9.8
2023-08-18 CVE-2023-38890 SQL Injection vulnerability in PHPgurukul Online Shopping Portal 3.1
Online Shopping Portal Project 3.1 allows remote attackers to execute arbitrary SQL commands/queries via the login form, leading to unauthorized access and potential data manipulation.
network
low complexity
phpgurukul CWE-89
8.8