VYPR

Teachers Record Management System

by Phpgurukul

CVEs (12)

  • CVE-2024-51064CriOct 31, 2024
    risk 0.64cvss 9.8epss 0.01

    Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection via the tid parameter to admin/queries.php.

  • CVE-2021-26822CriFeb 15, 2021
    risk 0.64cvss 9.8epss 0.05

    Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. This vulnerability can be exploited by a remote unauthenticated attacker to leak sensitive information and perform code execution attacks.

  • CVE-2024-51063CriOct 31, 2024
    risk 0.59cvss 9.1epss 0.00

    Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection in add-teacher.php via the mobile number or email parameter.

  • CVE-2021-28423HigJul 1, 2021
    risk 0.57cvss 8.8epss 0.03

    Multiple SQL Injection vulnerabilities in Teachers Record Management System 1.0 thru 2.1 allow remote authenticated users to execute arbitrary SQL commands via the 'editid' GET parameter in edit-subjects-detail.php, edit-teacher-detail.php, or the 'searchdata' POST parameter in…

  • CVE-2025-8951HigAug 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/search.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack remotely. The exploit has…

  • CVE-2025-6888HigJun 30, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in PHPGurukul Teachers Record Management System 2.1. It has been classified as critical. This affects an unknown part of the file /admin/changeimage.php. The manipulation of the argument tid leads to sql injection. It is possible to initiate the attack…

  • CVE-2025-6885HigJun 30, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability, which was classified as critical, was found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/edit-teacher-detail.php. The manipulation of the argument tid leads to sql injection. It is possible to launch the…

  • CVE-2023-3187MedJun 9, 2023
    risk 0.44cvss 6.3epss 0.03

    A vulnerability, which was classified as critical, has been found in PHPGurukul Teachers Record Management System 1.0. Affected by this issue is some unknown functionality of the file /changeimage.php of the component Profile Picture Handler. The manipulation of the argument…

  • CVE-2024-48744MedOct 16, 2024
    risk 0.40cvss 6.1epss 0.00

    A Reflected Cross Site Scripting (XSS) vulnerability was found in /trms/listed- teachers.php in PHPGurukul Teachers Record Management System v2.1, which allows remote attackers to execute arbitrary code via "searchinput" POST request parameter.

  • CVE-2022-41446MedNov 23, 2022
    risk 0.35cvss 5.4epss 0.01

    An access control issue in /Admin/dashboard.php of Record Management System using CodeIgniter v1.0 allows attackers to access and modify user data.

  • CVE-2021-28424MedJul 1, 2021
    risk 0.35cvss 5.4epss 0.01

    A stored cross-site scripting (XSS) vulnerability in Teachers Record Management System 1.0 allows remote authenticated users to inject arbitrary web script or HTML via the 'email' POST parameter in adminprofile.php.

  • CVE-2022-41445MedNov 22, 2022
    risk 0.31cvss 4.8epss 0.01

    A cross-site scripting (XSS) vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page.