Vulnerabilities > Phpgurukul > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-23 | CVE-2025-1578 | Injection vulnerability in PHPgurukul Online Shopping Portal 2.1 A vulnerability, which was classified as critical, was found in PHPGurukul Online Shopping Portal 2.1. | 7.5 |
| 2025-02-13 | CVE-2025-25352 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A SQL Injection vulnerability was found in /admin/aboutus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the pagetitle POST request parameter. | 7.2 |
| 2025-02-13 | CVE-2025-25354 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactnumber POST request parameter. | 7.2 |
| 2025-02-13 | CVE-2025-25355 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the fromdate POST request parameter. | 7.2 |
| 2025-02-13 | CVE-2025-25356 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the " todate" POST request parameter. | 7.2 |
| 2025-02-13 | CVE-2025-25357 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A SQL Injection vulnerability was found in /admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the email POST request parameter. | 7.2 |
| 2024-12-31 | CVE-2024-13079 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A vulnerability was found in PHPGurukul Land Record System 1.0 and classified as critical. | 8.8 |
| 2024-12-31 | CVE-2024-13078 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A vulnerability has been found in PHPGurukul Land Record System 1.0 and classified as critical. | 8.8 |
| 2024-11-20 | CVE-2024-51208 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Boat Booking System 1.0 File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0 allows local attackers to upload a malicious PHP script via the Image Upload Mechanism parameter. | 7.2 |
| 2024-10-24 | CVE-2024-10331 | SQL Injection vulnerability in PHPgurukul Vehicle Record System 1.0 A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Record System 1.0. | 8.8 |