Vulnerabilities > Phpgurukul > ZOO Management System
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-21 | CVE-2023-41614 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A stored cross-site scripting (XSS) vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter. | 4.8 |
| 2023-09-08 | CVE-2023-41615 | SQL Injection vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields. | 9.8 |
| 2022-09-26 | CVE-2022-40924 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_animal" file of the "Animals" module in the background management system. | 7.2 |
| 2022-09-26 | CVE-2022-40925 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_event" file of the "Events" module in the background management system. | 7.2 |
| 2022-09-22 | CVE-2022-40932 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system. | 7.2 |
| 2022-08-12 | CVE-2022-2803 | Unspecified vulnerability in PHPgurukul ZOO Management System A vulnerability was found in SourceCodester Zoo Management System and classified as critical. | 9.8 |
| 2022-08-12 | CVE-2022-2804 | Unspecified vulnerability in PHPgurukul ZOO Management System A vulnerability was found in SourceCodester Zoo Management System. | 9.8 |
| 2022-07-05 | CVE-2022-33075 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 A stored cross-site scripting (XSS) vulnerability in the Add Classification function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via unspecified vectors. | 5.4 |
| 2022-06-29 | CVE-2022-31897 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 SourceCodester Zoo Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via public_html/register_visitor?msg=. | 6.1 |
| 2022-06-16 | CVE-2022-31914 | Cross-site Scripting vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via zms/admin/public_html/save_animal?an_id=24. | 5.4 |