Vulnerabilities > Phpgurukul > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-22 | CVE-2021-26765 | SQL Injection vulnerability in PHPgurukul Student Record System 4.0 SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php. | 9.8 |
| 2021-07-20 | CVE-2020-35427 | SQL Injection vulnerability in PHPgurukul Employee Record Management System 1.1 SQL injection vulnerability in PHPGurukul Employee Record Management System 1.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication. | 9.8 |
| 2021-05-26 | CVE-2021-33470 | SQL Injection vulnerability in PHPgurukul Covid19 Testing Management System 1.0 COVID19 Testing Management System 1.0 is vulnerable to SQL Injection via the admin panel. | 9.8 |
| 2021-02-17 | CVE-2021-26809 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul CAR Rental Portal 2.0 PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php. | 9.8 |
| 2021-02-15 | CVE-2021-26822 | SQL Injection vulnerability in PHPgurukul Teachers Record Management System 1.0 Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. | 9.8 |
| 2020-11-16 | CVE-2020-25952 | SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 2.1 SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System With admin panel 2.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication. | 9.8 |
| 2020-08-20 | CVE-2020-23936 | SQL Injection vulnerability in PHPgurukul Vehicle Parking Management System 1.0 PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". | 9.8 |
| 2020-04-28 | CVE-2020-12429 | SQL Injection vulnerability in PHPgurukul Online Course Registration 2.0 Online Course Registration 2.0 has multiple SQL injections that would can lead to a complete database compromise and authentication bypass in the login pages: admin/change-password.php, admin/check_availability.php, admin/index.php, change-password.php, check_availability.php, includes/header.php, index.php, and pincode-verification.php. | 9.8 |
| 2020-03-08 | CVE-2020-10225 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul JOB Portal 1.0 An unauthenticated file upload vulnerability has been identified in admin/gallery.php in PHPGurukul Job Portal 1.0. | 9.8 |
| 2020-03-08 | CVE-2020-10224 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Online Book Store 1.0 An unauthenticated file upload vulnerability has been identified in admin_add.php in PHPGurukul Online Book Store 1.0. | 9.8 |