64 matches found
CVE-2020-10107
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS, as demonstrated by the ExpenseItem or ExpenseCost parameter in manage-expense.php...
EUVD-2021-13114
Malware in sbrugna...
EUVD-2025-15447
Malicious code in bioql PyPI...
EUVD-2025-15649
Malicious code in bioql PyPI...
EUVD-2025-4111
Malicious code in bioql PyPI...
EUVD-2025-15393
Malicious code in bioql PyPI...
Daily Expense Tracker System /expense-yearwise-reports-detailed.php File SQL Injection Vulnerability
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter todate in the file...
CVE-2025-5546 PHPGurukul Daily Expense Tracker System expense-reports-detailed.php sql injection
A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of the file /expense-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be initiated remotely. The...
CVE-2025-5546 PHPGurukul Daily Expense Tracker System expense-reports-detailed.php sql injection
A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of the file /expense-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be initiated remotely. The...
CVE-2025-5546
PHPGurukul Daily Expense Tracker System 1.1 is affected by a SQL injection in /expense-reports-detailed.php via the fromdate/todate parameters. The issue allows remote attackers to execute arbitrary SQL commands and potentially access sensitive data. Public exploit information is present in sever...
PT-2025-23680 · Unknown · Phpgurukul Daily Expense Tracker System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical vulnerability was found in the PHPGurukul Daily Expense Tracker System. This issue affects unknown code in the file /expense-reports-detailed.php. The manipulation of...
CVE-2025-5368
A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...
CVE-2025-5368 PHPGurukul Daily Expense Tracker System expense-yearwise-reports-detailed.php sql injection
A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...
CVE-2025-5368 PHPGurukul Daily Expense Tracker System expense-yearwise-reports-detailed.php sql injection
A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...
CVE-2025-5368
PHPGurukul Daily Expense Tracker System v1.1 contains a SQL injection vulnerability in /expense-yearwise-reports-detailed.php caused by unsafely handling the todate parameter. Exploitation is remote and publicly disclosed. Several sources associate this CVE with high-severity impact (credit in so...
CVE-2021-26304
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter...
CVE-2021-26303
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field...
Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31000)
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of the fromdate/todate parameter in the file /expense-monthwise-reports-detailed.php with...
Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31002)
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter fullname/contactnumber in the file...
Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31001)
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. The Daily Expense Tracker System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the email parameter of the file /forgot-password.php. An...