Vulnerabilities > Phpgurukul > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-15 | CVE-2023-47446 | Cross-site Scripting vulnerability in PHPgurukul Pre-School Enrollment System 1.0 Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting (XSS) on the profile.php page via fullname parameter. | 5.4 |
| 2023-11-14 | CVE-2023-46025 | SQL Injection vulnerability in PHPgurukul Teacher Subject Allocation Management System 1.0 SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to obtain sensitive information via the 'editid' parameter. | 4.9 |
| 2023-11-14 | CVE-2023-46026 | Cross-site Scripting vulnerability in PHPgurukul Teacher Subject Allocation Management System 1.0 Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters. | 4.8 |
| 2023-11-10 | CVE-2023-6075 | Cross-site Scripting vulnerability in PHPgurukul Restaurant Table Booking System 1.0 A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0. | 6.1 |
| 2023-10-25 | CVE-2023-46583 | Cross-site Scripting vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0 Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field. | 6.1 |
| 2023-09-30 | CVE-2023-5303 | Cross-site Scripting vulnerability in PHPgurukul Online Banquet Booking System 1.0 A vulnerability, which was classified as problematic, was found in Online Banquet Booking System 1.0. | 6.1 |
| 2023-09-21 | CVE-2023-41614 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A stored cross-site scripting (XSS) vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter. | 4.8 |
| 2023-09-11 | CVE-2023-41593 | Cross-site Scripting vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1 Multiple cross-site scripting (XSS) vulnerabilities in Dairy Farm Shop Management System Using PHP and MySQL v1.1 allow attackers to execute arbitrary web scripts and HTML via a crafted payload injected into the Category and Category Field parameters. | 5.4 |
| 2023-09-08 | CVE-2023-41575 | Cross-site Scripting vulnerability in PHPgurukul Blood Bank & Donor Management System 2.2 Multiple stored cross-site scripting (XSS) vulnerabilities in /bbdms/sign-up.php of Blood Bank & Donor Management v2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Full Name, Message, or Address parameters. | 5.4 |
| 2023-08-08 | CVE-2023-37683 | Cross-site Scripting vulnerability in PHPgurukul Online Nurse Hiring System 1.0 Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Profile Page of the Admin. | 4.8 |