Lucene search
K

64 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.11 views

CVE-2020-10107

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS, as demonstrated by the ExpenseItem or ExpenseCost parameter in manage-expense.php...

5.4CVSS6.7AI score0.00531EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-13114

Malware in sbrugna...

5.4CVSS5.6AI score0.00583EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-15447

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00596EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-15649

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00478EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4111

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00458EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-15393

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00421EPSS
Exploits1References7
CNVD
CNVD
added 2025/06/06 12:0 a.m.3 views

Daily Expense Tracker System /expense-yearwise-reports-detailed.php File SQL Injection Vulnerability

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter todate in the file...

8.8CVSS8.2AI score0.00342EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/03 11:31 p.m.14 views

CVE-2025-5546 PHPGurukul Daily Expense Tracker System expense-reports-detailed.php sql injection

A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of the file /expense-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be initiated remotely. The...

6.5CVSS0.00325EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/03 11:31 p.m.9 views

CVE-2025-5546 PHPGurukul Daily Expense Tracker System expense-reports-detailed.php sql injection

A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of the file /expense-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be initiated remotely. The...

6.5CVSS6.9AI score0.00325EPSS
Exploits1References5
CVE
CVE
added 2025/06/03 11:31 p.m.46 views

CVE-2025-5546

PHPGurukul Daily Expense Tracker System 1.1 is affected by a SQL injection in /expense-reports-detailed.php via the fromdate/todate parameters. The issue allows remote attackers to execute arbitrary SQL commands and potentially access sensitive data. Public exploit information is present in sever...

8.8CVSS7.8AI score0.00325EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.4 views

PT-2025-23680 · Unknown · Phpgurukul Daily Expense Tracker System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical vulnerability was found in the PHPGurukul Daily Expense Tracker System. This issue affects unknown code in the file /expense-reports-detailed.php. The manipulation of...

8.8CVSS6.9AI score0.00325EPSS
Exploits1References10
NVD
NVD
added 2025/05/31 4:15 a.m.13 views

CVE-2025-5368

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...

8.8CVSS0.00342EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/05/31 4:0 a.m.12 views

CVE-2025-5368 PHPGurukul Daily Expense Tracker System expense-yearwise-reports-detailed.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...

6.5CVSS0.00342EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/05/31 4:0 a.m.8 views

CVE-2025-5368 PHPGurukul Daily Expense Tracker System expense-yearwise-reports-detailed.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated...

6.5CVSS6.8AI score0.00342EPSS
Exploits1References5
CVE
CVE
added 2025/05/31 4:0 a.m.62 views

CVE-2025-5368

PHPGurukul Daily Expense Tracker System v1.1 contains a SQL injection vulnerability in /expense-yearwise-reports-detailed.php caused by unsafely handling the todate parameter. Exploitation is remote and publicly disclosed. Several sources associate this CVE with high-severity impact (credit in so...

8.8CVSS6.8AI score0.00342EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 7:27 p.m.8 views

CVE-2021-26304

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter...

5.4CVSS5.6AI score0.00583EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:27 p.m.6 views

CVE-2021-26303

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field...

6.1CVSS5.6AI score0.00782EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31000)

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of the fromdate/todate parameter in the file /expense-monthwise-reports-detailed.php with...

9.8CVSS8.2AI score0.00415EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.3 views

Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31002)

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter fullname/contactnumber in the file...

9.8CVSS8.3AI score0.00596EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31001)

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. The Daily Expense Tracker System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the email parameter of the file /forgot-password.php. An...

9.8CVSS8.3AI score0.00478EPSS
Exploits1References1
Rows per page
Query Builder