Land Record System
by Phpgurukul
CVEs (25)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-7757 | Hig | 0.47 | 7.3 | 0.00 | Jul 17, 2025 | A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit-property.php. The manipulation of the argument editid leads to sql injection. The attack can be launched remotely.… | ||
| CVE-2025-4163 | 0.00 | — | 0.00 | May 1, 2025 | A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. This issue affects some unknown processing of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to sql injection. The attack may be initiated… | |||
| CVE-2025-25462 | 0.00 | — | 0.00 | Feb 26, 2025 | A SQL Injection vulnerability was found in /admin/add-propertytype.php in PHPGurukul Land Record System Project in PHP v1.0 allows remote attackers to execute arbitrary code via the propertytype POST request parameter. | |||
| CVE-2025-25354 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactnumber POST request parameter. | |||
| CVE-2025-25388 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/edit-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the editid GET request parameter. | |||
| CVE-2025-25387 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the propertytype POST request parameter. | |||
| CVE-2025-25389 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request parameter. | |||
| CVE-2025-25352 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/aboutus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the pagetitle POST request parameter. | |||
| CVE-2025-25355 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the fromdate POST request parameter. | |||
| CVE-2025-25357 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the email POST request parameter. | |||
| CVE-2025-25356 | 0.00 | — | 0.01 | Feb 13, 2025 | A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the " todate" POST request parameter. | |||
| CVE-2024-57687 | 0.00 | — | 0.03 | Jan 10, 2025 | An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "Cookie" GET request parameter. | |||
| CVE-2024-57686 | 0.00 | — | 0.02 | Jan 10, 2025 | A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "pagetitle" parameter. | |||
| CVE-2024-13085 | 0.00 | — | 0.01 | Dec 31, 2024 | A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. The manipulation of the argument username leads to sql injection. The attack may be launched… | |||
| CVE-2024-13084 | 0.00 | — | 0.00 | Dec 31, 2024 | A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/search-property.php. The manipulation of the argument searchdata leads to sql injection. The attack can be… | |||
| CVE-2024-13083 | 0.00 | — | 0.00 | Dec 31, 2024 | A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument Admin Name leads to cross site scripting. It is possible to launch the attack… | |||
| CVE-2024-13082 | 0.00 | — | 0.00 | Dec 31, 2024 | A vulnerability was found in PHPGurukul Land Record System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/search-property.php. The manipulation of the argument Search By leads to cross site scripting. The attack may be… | |||
| CVE-2024-13081 | 0.00 | — | 0.00 | Dec 31, 2024 | A vulnerability was found in PHPGurukul Land Record System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/contactus.php. The manipulation of the argument Page Description leads to cross site scripting. The attack can be… | |||
| CVE-2024-13080 | 0.00 | — | 0.00 | Dec 31, 2024 | A vulnerability was found in PHPGurukul Land Record System 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/aboutus.php. The manipulation of the argument Page Description leads to cross site scripting. It is possible to initiate the… | |||
| CVE-2024-13079 | 0.00 | — | 0.01 | Dec 31, 2024 | A vulnerability was found in PHPGurukul Land Record System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/property-details.php. The manipulation of the argument editid leads to sql injection. The attack may be launched… |
- risk 0.47cvss 7.3epss 0.00
A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit-property.php. The manipulation of the argument editid leads to sql injection. The attack can be launched remotely.…
- CVE-2025-4163May 1, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. This issue affects some unknown processing of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to sql injection. The attack may be initiated…
- CVE-2025-25462Feb 26, 2025risk 0.00cvss —epss 0.00
A SQL Injection vulnerability was found in /admin/add-propertytype.php in PHPGurukul Land Record System Project in PHP v1.0 allows remote attackers to execute arbitrary code via the propertytype POST request parameter.
- CVE-2025-25354Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactnumber POST request parameter.
- CVE-2025-25388Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/edit-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the editid GET request parameter.
- CVE-2025-25387Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the propertytype POST request parameter.
- CVE-2025-25389Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request parameter.
- CVE-2025-25352Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/aboutus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the pagetitle POST request parameter.
- CVE-2025-25355Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the fromdate POST request parameter.
- CVE-2025-25357Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the email POST request parameter.
- CVE-2025-25356Feb 13, 2025risk 0.00cvss —epss 0.01
A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the " todate" POST request parameter.
- CVE-2024-57687Jan 10, 2025risk 0.00cvss —epss 0.03
An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "Cookie" GET request parameter.
- CVE-2024-57686Jan 10, 2025risk 0.00cvss —epss 0.02
A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "pagetitle" parameter.
- CVE-2024-13085Dec 31, 2024risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. The manipulation of the argument username leads to sql injection. The attack may be launched…
- CVE-2024-13084Dec 31, 2024risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/search-property.php. The manipulation of the argument searchdata leads to sql injection. The attack can be…
- CVE-2024-13083Dec 31, 2024risk 0.00cvss —epss 0.00
A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument Admin Name leads to cross site scripting. It is possible to launch the attack…
- CVE-2024-13082Dec 31, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in PHPGurukul Land Record System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/search-property.php. The manipulation of the argument Search By leads to cross site scripting. The attack may be…
- CVE-2024-13081Dec 31, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in PHPGurukul Land Record System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/contactus.php. The manipulation of the argument Page Description leads to cross site scripting. The attack can be…
- CVE-2024-13080Dec 31, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in PHPGurukul Land Record System 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/aboutus.php. The manipulation of the argument Page Description leads to cross site scripting. It is possible to initiate the…
- CVE-2024-13079Dec 31, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Land Record System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/property-details.php. The manipulation of the argument editid leads to sql injection. The attack may be launched…
Page 1 of 2