6 matches found
CVE-2025-4908
A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...
CVE-2025-4908
creationtimestamp| type| source ---|---|--- 2025-05-19 03:38:22+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16798 2025-05-19 05:13:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpissik3jk2o...
CVE-2025-4908
A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...
CVE-2025-4908
A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...
CVE-2025-4908
The CVE-2025-4908 entry describes a SQL injection in PHPGurukul Daily Expense Tracker System 1.1, arising from unsafely handling the fromdate/todate parameters in /expense-datewise-reports-detailed.php. Attack is remote-enabled and previously disclosed publicly. Connected sources corroborate the ...
CVE-2025-4908 PHPGurukul Daily Expense Tracker System expense-datewise-reports-detailed.php sql injection
A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...