Vulnerabilities > Phpgurukul > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-05 | CVE-2022-33075 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A stored cross-site scripting (XSS) vulnerability in the Add Classification function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via unspecified vectors. | 5.4 |
| 2022-06-29 | CVE-2022-31897 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 SourceCodester Zoo Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via public_html/register_visitor?msg=. | 6.1 |
| 2022-06-16 | CVE-2022-31914 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via zms/admin/public_html/save_animal?an_id=24. | 5.4 |
| 2022-06-14 | CVE-2022-30930 | Cross-Site Request Forgery (CSRF) vulnerability in PHPgurukul Tourism Management System 3.2 Tourism Management System Version: V 3.2 is affected by: Cross Site Request Forgery (CSRF). | 4.3 |
| 2022-05-26 | CVE-2021-4232 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A vulnerability classified as problematic has been found in Zoo Management System 1.0. | 6.1 |
| 2022-05-23 | CVE-2022-29004 | Cross-site Scripting vulnerability in PHPgurukul E-Diary Management System 1.0 Diary Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Name parameter in search-result.php. | 6.1 |
| 2022-05-23 | CVE-2022-29005 | Cross-site Scripting vulnerability in PHPgurukul Online Birth Certificate System 1.2 Multiple cross-site scripting (XSS) vulnerabilities in the component /obcs/user/profile.php of Online Birth Certificate System v1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fname or lname parameters. | 6.1 |
| 2022-05-23 | CVE-2022-1816 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A vulnerability, which was classified as problematic, has been found in Zoo Management System 1.0. | 5.4 |
| 2022-05-11 | CVE-2022-29008 | Authorization Bypass Through User-Controlled Key vulnerability in PHPgurukul BUS Pass Management System 1.0 An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information. | 6.5 |
| 2021-12-16 | CVE-2021-44317 | Cross-site Scripting vulnerability in PHPgurukul BUS Pass Management System 1.0 In Bus Pass Management System v1.0, parameters 'pagedes' and `About Us` are affected with a Stored Cross-site scripting vulnerability. | 5.4 |