VYPR

Student Result Management System

by Phpgurukul

CVEs (13)

  • CVE-2025-7534HigJul 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in PHPGurukul Student Result Management System 2.0. It has been classified as critical. Affected is an unknown function of the file /notice-details.php of the component GET Parameter Handler. The manipulation of the argument nid leads to sql injection.…

  • CVE-2023-33580MedJun 26, 2023
    risk 0.34cvss 4.8epss 0.04

    Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in the "Admin Name" field on Admin Profile page.

  • CVE-2026-3403LowMar 2, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried…

  • CVE-2026-3402LowMar 2, 2026
    risk 0.16cvss 2.4epss 0.00

    A security vulnerability has been detected in PHPGurukul Student Record Management System up to 1.0. This vulnerability affects unknown code of the file /edit-course.php. Such manipulation of the argument Course Short Name leads to cross site scripting. The attack can be…

  • CVE-2024-55270Feb 17, 2026
    risk 0.00cvss epss 0.00

    phpgurukul Student Management System 1.0 is vulnerable to SQL Injection in studentms/admin/search.php via the searchdata parameter.

  • CVE-2024-55016Nov 14, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Student Record Management System 3.20 is vulnerable to SQL Injection via the id and password parameters in login.php.

  • CVE-2025-56710Sep 15, 2025
    risk 0.00cvss epss 0.00

    A Cross-Site Request Forgery (CSRF) vulnerability was identified in the Profile Page of the PHPGurukul Student-Result-Management-System-Using-PHP-V2.0. This flaw allows an attacker to trick authenticated users into unintentionally modifying their account details. By crafting a…

  • CVE-2025-50489Jul 28, 2025
    risk 0.00cvss epss 0.01

    Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

  • CVE-2025-50490Jul 28, 2025
    risk 0.00cvss epss 0.01

    Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.

  • CVE-2025-5599Jun 4, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical was found in PHPGurukul Student Result Management System 1.3. This vulnerability affects unknown code of the file /editmyexp.php. The manipulation of the argument emp1ctc leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-5232May 27, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System 1.0. This issue affects some unknown processing of the file /admin/report.php. The manipulation of the argument fromdate/todate leads to sql injection. The…

  • CVE-2024-51103May 23, 2025
    risk 0.00cvss epss 0.00

    PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/password-recovery.php via the emailid and id parameters.

  • CVE-2024-51102May 23, 2025
    risk 0.00cvss epss 0.00

    PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/login.php via the username and password parameters.