Vulnerabilities > Phpgurukul

DATE CVE VULNERABILITY TITLE RISK
2024-01-10 CVE-2020-26627 SQL Injection vulnerability in PHPgurukul Hospital Management System 4.0
A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries -> Unread Query' tab.
network
low complexity
phpgurukul CWE-89
4.9
2024-01-10 CVE-2020-26628 Cross-site Scripting vulnerability in PHPgurukul Hospital Management System 4.0
A Cross-Site Scripting (XSS) vulnerability was discovered in Hospital Management System V4.0 which allows an attacker to execute arbitrary web scripts or HTML code via a malicious payload appended to a username on the 'Edit Profile" page and triggered by another user visiting the profile.
network
low complexity
phpgurukul CWE-79
6.1
2024-01-10 CVE-2020-26629 Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Hospital Management System 4.0
A JQuery Unrestricted Arbitrary File Upload vulnerability was discovered in Hospital Management System V4.0 which allows an unauthenticated attacker to upload any file to the server.
network
low complexity
phpgurukul CWE-434
critical
9.8
2024-01-10 CVE-2020-26630 SQL Injection vulnerability in PHPgurukul Hospital Management System 4.0
A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a special payload in the 'Doctor Specialization' field under the 'Go to Doctors' tab after logging in as an admin.
network
low complexity
phpgurukul CWE-89
4.9
2024-01-10 CVE-2024-0361 Unspecified vulnerability in PHPgurukul Hospital Management System 1.0
A vulnerability classified as critical has been found in PHPGurukul Hospital Management System 1.0.
network
low complexity
phpgurukul
critical
9.8
2024-01-10 CVE-2024-0362 Unspecified vulnerability in PHPgurukul Hospital Management System 1.0
A vulnerability classified as critical was found in PHPGurukul Hospital Management System 1.0.
network
low complexity
phpgurukul
critical
9.8
2024-01-10 CVE-2024-0363 SQL Injection vulnerability in PHPgurukul Hospital Management System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
9.8
2024-01-10 CVE-2024-0364 Unspecified vulnerability in PHPgurukul Hospital Management System 1.0
A vulnerability, which was classified as critical, was found in PHPGurukul Hospital Management System 1.0.
network
low complexity
phpgurukul
critical
9.8
2024-01-10 CVE-2024-0360 Unspecified vulnerability in PHPgurukul Hospital Management System 1.0
A vulnerability was found in PHPGurukul Hospital Management System 1.0.
network
low complexity
phpgurukul
critical
9.8
2024-01-10 CVE-2024-0355 Unspecified vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System up to 1.1.
network
low complexity
phpgurukul
critical
9.8