Vulnerabilities > Phpgurukul
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-26 | CVE-2023-5794 | SQL Injection vulnerability in PHPgurukul Online Railway Catering Management System 1.0 A vulnerability was found in PHPGurukul Online Railway Catering System 1.0. | 9.8 |
2023-10-25 | CVE-2023-46583 | Cross-site Scripting vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0 Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field. | 6.1 |
2023-10-25 | CVE-2023-46584 | SQL Injection vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0 SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint. | 9.8 |
2023-09-30 | CVE-2023-5303 | Unspecified vulnerability in PHPgurukul Online Banquet Booking System 1.0 A vulnerability, which was classified as problematic, was found in Online Banquet Booking System 1.0. | 6.1 |
2023-09-21 | CVE-2023-41614 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A stored cross-site scripting (XSS) vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter. | 4.8 |
2023-09-11 | CVE-2023-41593 | Cross-site Scripting vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1 Multiple cross-site scripting (XSS) vulnerabilities in Dairy Farm Shop Management System Using PHP and MySQL v1.1 allow attackers to execute arbitrary web scripts and HTML via a crafted payload injected into the Category and Category Field parameters. | 5.4 |
2023-09-08 | CVE-2023-41575 | Cross-site Scripting vulnerability in PHPgurukul Blood Bank & Donor Management System 2.2 Multiple stored cross-site scripting (XSS) vulnerabilities in /bbdms/sign-up.php of Blood Bank & Donor Management v2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Full Name, Message, or Address parameters. | 5.4 |
2023-09-08 | CVE-2023-41594 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1 Dairy Farm Shop Management System Using PHP and MySQL v1.1 was discovered to contain multiple SQL injection vulnerabilities in the Login function via the Username and Password parameters. | 7.5 |
2023-09-08 | CVE-2023-41615 | SQL Injection vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields. | 9.8 |
2023-08-18 | CVE-2023-38890 | SQL Injection vulnerability in PHPgurukul Online Shopping Portal 3.1 Online Shopping Portal Project 3.1 allows remote attackers to execute arbitrary SQL commands/queries via the login form, leading to unauthorized access and potential data manipulation. | 8.8 |