Student Result Management System
by Phpgurukul
CVEs (13)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-7534 | Hig | 0.47 | 7.3 | 0.00 | Jul 13, 2025 | A vulnerability was found in PHPGurukul Student Result Management System 2.0. It has been classified as critical. Affected is an unknown function of the file /notice-details.php of the component GET Parameter Handler. The manipulation of the argument nid leads to sql injection.… | ||
| CVE-2023-33580 | Med | 0.34 | 4.8 | 0.04 | Jun 26, 2023 | Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in the "Admin Name" field on Admin Profile page. | ||
| CVE-2026-3403 | Low | 0.16 | 2.4 | 0.00 | Mar 2, 2026 | A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried… | ||
| CVE-2026-3402 | Low | 0.16 | 2.4 | 0.00 | Mar 2, 2026 | A security vulnerability has been detected in PHPGurukul Student Record Management System up to 1.0. This vulnerability affects unknown code of the file /edit-course.php. Such manipulation of the argument Course Short Name leads to cross site scripting. The attack can be… | ||
| CVE-2024-55270 | 0.00 | — | 0.00 | Feb 17, 2026 | phpgurukul Student Management System 1.0 is vulnerable to SQL Injection in studentms/admin/search.php via the searchdata parameter. | |||
| CVE-2024-55016 | 0.00 | — | 0.00 | Nov 14, 2025 | PHPGurukul Student Record Management System 3.20 is vulnerable to SQL Injection via the id and password parameters in login.php. | |||
| CVE-2025-56710 | 0.00 | — | 0.00 | Sep 15, 2025 | A Cross-Site Request Forgery (CSRF) vulnerability was identified in the Profile Page of the PHPGurukul Student-Result-Management-System-Using-PHP-V2.0. This flaw allows an attacker to trick authenticated users into unintentionally modifying their account details. By crafting a… | |||
| CVE-2025-50489 | 0.00 | — | 0.01 | Jul 28, 2025 | Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack. | |||
| CVE-2025-50490 | 0.00 | — | 0.01 | Jul 28, 2025 | Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack. | |||
| CVE-2025-5599 | 0.00 | — | 0.00 | Jun 4, 2025 | A vulnerability classified as critical was found in PHPGurukul Student Result Management System 1.3. This vulnerability affects unknown code of the file /editmyexp.php. The manipulation of the argument emp1ctc leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2025-5232 | 0.00 | — | 0.00 | May 27, 2025 | A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System 1.0. This issue affects some unknown processing of the file /admin/report.php. The manipulation of the argument fromdate/todate leads to sql injection. The… | |||
| CVE-2024-51103 | 0.00 | — | 0.00 | May 23, 2025 | PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/password-recovery.php via the emailid and id parameters. | |||
| CVE-2024-51102 | 0.00 | — | 0.00 | May 23, 2025 | PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/login.php via the username and password parameters. |
- risk 0.47cvss 7.3epss 0.00
A vulnerability was found in PHPGurukul Student Result Management System 2.0. It has been classified as critical. Affected is an unknown function of the file /notice-details.php of the component GET Parameter Handler. The manipulation of the argument nid leads to sql injection.…
- risk 0.34cvss 4.8epss 0.04
Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in the "Admin Name" field on Admin Profile page.
- risk 0.16cvss 2.4epss 0.00
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried…
- risk 0.16cvss 2.4epss 0.00
A security vulnerability has been detected in PHPGurukul Student Record Management System up to 1.0. This vulnerability affects unknown code of the file /edit-course.php. Such manipulation of the argument Course Short Name leads to cross site scripting. The attack can be…
- CVE-2024-55270Feb 17, 2026risk 0.00cvss —epss 0.00
phpgurukul Student Management System 1.0 is vulnerable to SQL Injection in studentms/admin/search.php via the searchdata parameter.
- CVE-2024-55016Nov 14, 2025risk 0.00cvss —epss 0.00
PHPGurukul Student Record Management System 3.20 is vulnerable to SQL Injection via the id and password parameters in login.php.
- CVE-2025-56710Sep 15, 2025risk 0.00cvss —epss 0.00
A Cross-Site Request Forgery (CSRF) vulnerability was identified in the Profile Page of the PHPGurukul Student-Result-Management-System-Using-PHP-V2.0. This flaw allows an attacker to trick authenticated users into unintentionally modifying their account details. By crafting a…
- CVE-2025-50489Jul 28, 2025risk 0.00cvss —epss 0.01
Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.
- CVE-2025-50490Jul 28, 2025risk 0.00cvss —epss 0.01
Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to execute a session hijacking attack.
- CVE-2025-5599Jun 4, 2025risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in PHPGurukul Student Result Management System 1.3. This vulnerability affects unknown code of the file /editmyexp.php. The manipulation of the argument emp1ctc leads to sql injection. The attack can be initiated remotely. The…
- CVE-2025-5232May 27, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System 1.0. This issue affects some unknown processing of the file /admin/report.php. The manipulation of the argument fromdate/todate leads to sql injection. The…
- CVE-2024-51103May 23, 2025risk 0.00cvss —epss 0.00
PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/password-recovery.php via the emailid and id parameters.
- CVE-2024-51102May 23, 2025risk 0.00cvss —epss 0.00
PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/login.php via the username and password parameters.