Vulnerabilities > Phpgurukul > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-05 | CVE-2024-8463 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul JOB Portal 1.0 File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of which could allow an authenticated user to execute an RCE via webshell. | 8.8 |
| 2024-09-05 | CVE-2024-8464 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through JOBREGID parameter in /jobportal/admin/applicants/controller.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8465 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through user_id parameter in /jobportal/admin/user/controller.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8466 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/category/controller.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8467 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/category/index.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8468 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through search parameter in /jobportal/index.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8469 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/employee/index.php, and retrieve all the information stored in it. | 7.5 |
| 2024-09-05 | CVE-2024-8470 | SQL Injection vulnerability in PHPgurukul JOB Portal 1.0 SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/vacancy/controller.php, and retrieve all the information stored in it. | 7.5 |
| 2024-05-26 | CVE-2024-5361 | Unspecified vulnerability in PHPgurukul ZOO Management System 2.1 A vulnerability was found in PHPGurukul Zoo Management System 2.1. | 7.2 |
| 2024-05-17 | CVE-2024-5066 | Unspecified vulnerability in PHPgurukul Online Course Registration System 3.1 A vulnerability classified as critical was found in PHPGurukul Online Course Registration System 3.1. | 8.8 |