Vulnerabilities > Phpgurukul
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-08 | CVE-2023-37689 | Cross-site Scripting vulnerability in PHPgurukul Maid Hiring Management System 1.0 Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Booking Request page. | 4.8 |
| 2023-08-08 | CVE-2023-37690 | Cross-site Scripting vulnerability in PHPgurukul Maid Hiring Management System 1.0 Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Search Maid page. | 4.8 |
| 2023-08-04 | CVE-2023-39551 | SQL Injection vulnerability in PHPgurukul Online Security Guards Hiring System 1.0 PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php. | 9.8 |
| 2023-08-01 | CVE-2023-37772 | SQL Injection vulnerability in PHPgurukul Online Shopping Portal 3.1 Online Shopping Portal Project v3.1 was discovered to contain a SQL injection vulnerability via the Email parameter at /shopping/login.php. | 8.8 |
| 2023-07-31 | CVE-2023-37771 | SQL Injection vulnerability in PHPgurukul ART Gallery Management System 1.0 Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php. | 9.8 |
| 2023-07-28 | CVE-2023-31932 | SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0 Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the viewid parameter of the view-enquiry.php file. | 7.2 |
| 2023-07-28 | CVE-2023-31933 | SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0 Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-pass-detail.php file. | 7.2 |
| 2023-07-28 | CVE-2023-31934 | Cross-site Scripting vulnerability in PHPgurukul Rail Pass Management System 1.0 Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php. | 4.8 |
| 2023-07-28 | CVE-2023-31935 | Cross-site Scripting vulnerability in PHPgurukul Rail Pass Management System 1.0 Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the emial parameter of admin-profile.php. | 4.8 |
| 2023-07-28 | CVE-2023-31936 | SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0 Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the viewid parameter of the view-pass-detail.php file. | 7.2 |