Vendor CVEs
Phpgurukul
All CVEs
1,148 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-6649 | 0.00 | — | 0.01 | Dec 10, 2023 | A vulnerability has been found in PHPGurukul Teacher Subject Allocation Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file index.php. The manipulation of the argument searchdata with the input leads… | |||
| CVE-2023-6648 | 0.00 | — | 0.01 | Dec 10, 2023 | A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. It is possible to… | |||
| CVE-2023-6474 | 0.00 | — | 0.00 | Dec 2, 2023 | A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack… | |||
| CVE-2023-6465 | 0.00 | — | 0.01 | Dec 2, 2023 | A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as problematic. This affects an unknown part of the file registered-user-testing.php. The manipulation of the argument regmobilenumber leads to cross site scripting. It is… | |||
| CVE-2023-6442 | 0.00 | — | 0.01 | Nov 30, 2023 | A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross… | |||
| CVE-2023-6402 | 0.00 | — | 0.01 | Nov 30, 2023 | A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the… | |||
| CVE-2023-6297 | 0.00 | — | 0.01 | Nov 26, 2023 | A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with… | |||
| CVE-2023-47446 | 0.00 | — | 0.00 | Nov 15, 2023 | Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting (XSS) on the profile.php page via fullname parameter. | |||
| CVE-2023-46026 | 0.00 | — | 0.00 | Nov 14, 2023 | Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters. | |||
| CVE-2023-46025 | 0.00 | — | 0.01 | Nov 14, 2023 | SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to obtain sensitive information via the 'editid' parameter. | |||
| CVE-2023-6076 | 0.00 | — | 0.01 | Nov 10, 2023 | A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file booking-details.php of the component Reservation Status Handler. The manipulation of the argument bid… | |||
| CVE-2023-6075 | 0.00 | — | 0.00 | Nov 10, 2023 | A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0. Affected is an unknown function of the file index.php of the component Reservation Request Handler. The manipulation leads to cross site scripting. It is possible to… | |||
| CVE-2023-6074 | 0.00 | — | 0.01 | Nov 10, 2023 | A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as critical. This issue affects some unknown processing of the file check-status.php of the component Booking Reservation Handler. The manipulation leads to sql injection. The attack… | |||
| CVE-2023-5804 | 0.00 | — | 0.01 | Oct 26, 2023 | A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely.… | |||
| CVE-2023-5794 | 0.00 | — | 0.01 | Oct 26, 2023 | A vulnerability was found in PHPGurukul Online Railway Catering System 1.0. It has been classified as critical. Affected is an unknown function of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to… | |||
| CVE-2023-46583 | 0.00 | — | 0.00 | Oct 25, 2023 | Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field. | |||
| CVE-2023-46584 | 0.00 | — | 0.01 | Oct 25, 2023 | SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint. | |||
| CVE-2023-45394 | 0.00 | — | 0.00 | Oct 20, 2023 | Stored Cross-Site Scripting (XSS) vulnerability in the Company field in the "Request a Quote" Section of Small CRM v3.0 allows an attacker to store and execute malicious javascript code in the Admin panel which leads to Admin account takeover. | |||
| CVE-2023-40851 | 0.00 | — | 0.00 | Oct 16, 2023 | Cross Site Scripting (XSS) vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page. | |||
| CVE-2023-40852 | 0.00 | — | 0.01 | Oct 16, 2023 | SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to obtain sensitive information via crafted string in the admin user name field on the admin log in page. | |||
| CVE-2023-5305 | 0.00 | — | 0.00 | Sep 30, 2023 | A vulnerability was found in Online Banquet Booking System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /mail.php of the component Contact Us Page. The manipulation of the argument message leads to cross site scripting. The… | |||
| CVE-2023-5304 | 0.00 | — | 0.00 | Sep 30, 2023 | A vulnerability has been found in Online Banquet Booking System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /book-services.php of the component Service Booking. The manipulation of the argument message leads to cross… | |||
| CVE-2023-5303 | 0.00 | — | 0.00 | Sep 30, 2023 | A vulnerability, which was classified as problematic, was found in Online Banquet Booking System 1.0. Affected is an unknown function of the file /view-booking-detail.php of the component Account Detail Handler. The manipulation of the argument username leads to cross site… | |||
| CVE-2023-43331 | 0.00 | — | 0.00 | Sep 26, 2023 | A cross-site scripting (XSS) vulnerability in the Add User function of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field. | |||
| CVE-2023-37686 | 0.00 | — | 0.01 | Aug 8, 2023 | Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Add Nurse Page in the Admin portal. | |||
| CVE-2023-37688 | 0.00 | — | 0.00 | Aug 8, 2023 | Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page. | |||
| CVE-2023-37683 | 0.00 | — | 0.01 | Aug 8, 2023 | Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Profile Page of the Admin. | |||
| CVE-2023-37689 | 0.00 | — | 0.00 | Aug 8, 2023 | Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Booking Request page. | |||
| CVE-2023-37685 | 0.00 | — | 0.01 | Aug 8, 2023 | Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Search Report Page of the Admin portal. | |||
| CVE-2023-37690 | 0.00 | — | 0.00 | Aug 8, 2023 | Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Search Maid page. | |||
| CVE-2023-37687 | 0.00 | — | 0.01 | Aug 8, 2023 | Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the View Request of Nurse Page in the Admin portal. | |||
| CVE-2023-39551 | 0.00 | — | 0.01 | Aug 4, 2023 | PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php. | |||
| CVE-2023-37771 | 0.00 | — | 0.01 | Jul 31, 2023 | Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php. | |||
| CVE-2023-36942 | 0.00 | — | 0.00 | Jul 27, 2023 | A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the website title field. | |||
| CVE-2023-36941 | 0.00 | — | 0.01 | Jul 27, 2023 | A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name, leader, and member fields. | |||
| CVE-2023-37745 | 0.00 | — | 0.00 | Jul 13, 2023 | A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Description of the /admin/aboutus.php component. | |||
| CVE-2023-37743 | 0.00 | — | 0.00 | Jul 13, 2023 | A cross-site scripting (XSS) vulnerability in Teacher Subject Allocation System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search text box. | |||
| CVE-2023-37744 | 0.00 | — | 0.00 | Jul 13, 2023 | Maid Hiring Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-booking-request.php. | |||
| CVE-2023-3605 | 0.00 | — | 0.01 | Jul 10, 2023 | A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Registration Page. The manipulation leads to improper restriction of excessive authentication… | |||
| CVE-2023-36936 | 0.00 | — | 0.01 | Jul 10, 2023 | Cross-Site Scripting (XSS) vulnerability in PHPGurukul Online Security Guards Hiring System using PHP and MySQL 1.0 allows attackers to execute arbitrary code via a crafted payload to the search booking box. | |||
| CVE-2023-36940 | 0.00 | — | 0.01 | Jul 10, 2023 | Cross Site Scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL v.1.2 allows attackers to execute arbitrary code via a crafted payload injected into the search field. | |||
| CVE-2023-34648 | 0.00 | — | 0.00 | Jun 29, 2023 | A Cross Site Scripting vulnerability in PHPgurukl User Registration Login and User Management System with admin panel v.1.0 allows a local attacker to execute arbitrary code via a crafted script to the signup.php. | |||
| CVE-2023-34652 | 0.00 | — | 0.00 | Jun 28, 2023 | PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS) via Add New Course. | |||
| CVE-2023-34647 | 0.00 | — | 0.00 | Jun 28, 2023 | PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS). | |||
| CVE-2023-34650 | 0.00 | — | 0.00 | Jun 28, 2023 | PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS). | |||
| CVE-2023-34651 | 0.00 | — | 0.00 | Jun 28, 2023 | PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site Scripting (XSS). | |||
| CVE-2023-33591 | 0.00 | — | 0.00 | Jun 21, 2023 | User Registration & Login and User Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-result.php. | |||
| CVE-2023-3275 | 0.00 | — | 0.01 | Jun 15, 2023 | A vulnerability classified as critical was found in PHPGurukul Rail Pass Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view-pass-detail.php of the component POST Request Handler. The manipulation of the argument searchdata leads… | |||
| CVE-2023-34666 | 0.00 | — | 0.01 | Jun 15, 2023 | Cross-site scripting (XSS) vulnerability in Phpgurukul Cyber Cafe Management System 1.0 allows remote attackers to inject arbitrary web script or HTML via the admin username parameter. | |||
| CVE-2023-3005 | 0.00 | — | 0.01 | May 31, 2023 | A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=save_area of the component POST Parameter Handler. The manipulation of the… |
- CVE-2023-6649Dec 10, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in PHPGurukul Teacher Subject Allocation Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file index.php. The manipulation of the argument searchdata with the input leads…
- CVE-2023-6648Dec 10, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. It is possible to…
- CVE-2023-6474Dec 2, 2023risk 0.00cvss —epss 0.00
A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack…
- CVE-2023-6465Dec 2, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as problematic. This affects an unknown part of the file registered-user-testing.php. The manipulation of the argument regmobilenumber leads to cross site scripting. It is…
- CVE-2023-6442Nov 30, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross…
- CVE-2023-6402Nov 30, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the…
- CVE-2023-6297Nov 26, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with…
- CVE-2023-47446Nov 15, 2023risk 0.00cvss —epss 0.00
Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting (XSS) on the profile.php page via fullname parameter.
- CVE-2023-46026Nov 14, 2023risk 0.00cvss —epss 0.00
Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters.
- CVE-2023-46025Nov 14, 2023risk 0.00cvss —epss 0.01
SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to obtain sensitive information via the 'editid' parameter.
- CVE-2023-6076Nov 10, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file booking-details.php of the component Reservation Status Handler. The manipulation of the argument bid…
- CVE-2023-6075Nov 10, 2023risk 0.00cvss —epss 0.00
A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0. Affected is an unknown function of the file index.php of the component Reservation Request Handler. The manipulation leads to cross site scripting. It is possible to…
- CVE-2023-6074Nov 10, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as critical. This issue affects some unknown processing of the file check-status.php of the component Booking Reservation Handler. The manipulation leads to sql injection. The attack…
- CVE-2023-5804Oct 26, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely.…
- CVE-2023-5794Oct 26, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Online Railway Catering System 1.0. It has been classified as critical. Affected is an unknown function of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to…
- CVE-2023-46583Oct 25, 2023risk 0.00cvss —epss 0.00
Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field.
- CVE-2023-46584Oct 25, 2023risk 0.00cvss —epss 0.01
SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint.
- CVE-2023-45394Oct 20, 2023risk 0.00cvss —epss 0.00
Stored Cross-Site Scripting (XSS) vulnerability in the Company field in the "Request a Quote" Section of Small CRM v3.0 allows an attacker to store and execute malicious javascript code in the Admin panel which leads to Admin account takeover.
- CVE-2023-40851Oct 16, 2023risk 0.00cvss —epss 0.00
Cross Site Scripting (XSS) vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page.
- CVE-2023-40852Oct 16, 2023risk 0.00cvss —epss 0.01
SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to obtain sensitive information via crafted string in the admin user name field on the admin log in page.
- CVE-2023-5305Sep 30, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in Online Banquet Booking System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /mail.php of the component Contact Us Page. The manipulation of the argument message leads to cross site scripting. The…
- CVE-2023-5304Sep 30, 2023risk 0.00cvss —epss 0.00
A vulnerability has been found in Online Banquet Booking System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /book-services.php of the component Service Booking. The manipulation of the argument message leads to cross…
- CVE-2023-5303Sep 30, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, was found in Online Banquet Booking System 1.0. Affected is an unknown function of the file /view-booking-detail.php of the component Account Detail Handler. The manipulation of the argument username leads to cross site…
- CVE-2023-43331Sep 26, 2023risk 0.00cvss —epss 0.00
A cross-site scripting (XSS) vulnerability in the Add User function of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.
- CVE-2023-37686Aug 8, 2023risk 0.00cvss —epss 0.01
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Add Nurse Page in the Admin portal.
- CVE-2023-37688Aug 8, 2023risk 0.00cvss —epss 0.00
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page.
- CVE-2023-37683Aug 8, 2023risk 0.00cvss —epss 0.01
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Profile Page of the Admin.
- CVE-2023-37689Aug 8, 2023risk 0.00cvss —epss 0.00
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Booking Request page.
- CVE-2023-37685Aug 8, 2023risk 0.00cvss —epss 0.01
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Search Report Page of the Admin portal.
- CVE-2023-37690Aug 8, 2023risk 0.00cvss —epss 0.00
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Search Maid page.
- CVE-2023-37687Aug 8, 2023risk 0.00cvss —epss 0.01
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the View Request of Nurse Page in the Admin portal.
- CVE-2023-39551Aug 4, 2023risk 0.00cvss —epss 0.01
PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php.
- CVE-2023-37771Jul 31, 2023risk 0.00cvss —epss 0.01
Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php.
- CVE-2023-36942Jul 27, 2023risk 0.00cvss —epss 0.00
A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the website title field.
- CVE-2023-36941Jul 27, 2023risk 0.00cvss —epss 0.01
A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name, leader, and member fields.
- CVE-2023-37745Jul 13, 2023risk 0.00cvss —epss 0.00
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Description of the /admin/aboutus.php component.
- CVE-2023-37743Jul 13, 2023risk 0.00cvss —epss 0.00
A cross-site scripting (XSS) vulnerability in Teacher Subject Allocation System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search text box.
- CVE-2023-37744Jul 13, 2023risk 0.00cvss —epss 0.00
Maid Hiring Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-booking-request.php.
- CVE-2023-3605Jul 10, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Registration Page. The manipulation leads to improper restriction of excessive authentication…
- CVE-2023-36936Jul 10, 2023risk 0.00cvss —epss 0.01
Cross-Site Scripting (XSS) vulnerability in PHPGurukul Online Security Guards Hiring System using PHP and MySQL 1.0 allows attackers to execute arbitrary code via a crafted payload to the search booking box.
- CVE-2023-36940Jul 10, 2023risk 0.00cvss —epss 0.01
Cross Site Scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL v.1.2 allows attackers to execute arbitrary code via a crafted payload injected into the search field.
- CVE-2023-34648Jun 29, 2023risk 0.00cvss —epss 0.00
A Cross Site Scripting vulnerability in PHPgurukl User Registration Login and User Management System with admin panel v.1.0 allows a local attacker to execute arbitrary code via a crafted script to the signup.php.
- CVE-2023-34652Jun 28, 2023risk 0.00cvss —epss 0.00
PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS) via Add New Course.
- CVE-2023-34647Jun 28, 2023risk 0.00cvss —epss 0.00
PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).
- CVE-2023-34650Jun 28, 2023risk 0.00cvss —epss 0.00
PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS).
- CVE-2023-34651Jun 28, 2023risk 0.00cvss —epss 0.00
PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).
- CVE-2023-33591Jun 21, 2023risk 0.00cvss —epss 0.00
User Registration & Login and User Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-result.php.
- CVE-2023-3275Jun 15, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in PHPGurukul Rail Pass Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view-pass-detail.php of the component POST Request Handler. The manipulation of the argument searchdata leads…
- CVE-2023-34666Jun 15, 2023risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in Phpgurukul Cyber Cafe Management System 1.0 allows remote attackers to inject arbitrary web script or HTML via the admin username parameter.
- CVE-2023-3005May 31, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=save_area of the component POST Parameter Handler. The manipulation of the…
Page 21 of 23