CVE-2025-2380

The CVE-2025-2380 entry corresponds to a SQL injection in PHPGurukul Apartment Visitors Management System 1.0, triggered by manipulating the mobilenumber parameter in /admin-profile.php. Various sources (NVD entry and national vulnerability databases) confirm unauthenticated remote exploitation w...

CVE-2025-2088 PHPGurukul Pre-School Enrollment System profile.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Pre-School Enrollment System up to 1.0. Affected is an unknown function of the file /admin/profile.php. The manipulation of the argument fullname/emailid/mobileNumber leads to sql injection. It is possible to launch the...

CVE-2025-2060

A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. It has been classified as critical. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. It is possible to initiate the attack...

PT-2025-6846 · Sourcecodester · Sourcecodester Best Church Management

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Church Management Software version 1.1 Description: A critical issue affects the processing of the file /admin/app/profile crud.php, leading to sql injection. The attack may be initiated remotely. Multiple parameters might...

PT-2025-6117 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in code-projects Job Recruitment. The manipulation of the userhash argument leads to SQL injection. It is possible to initiate the attack remotely. The iss...

PT-2024-17876 · Unknown · Phpgurukul Maid Hiring Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Maid Hiring Management System version 1.0 Description: A problem has been found in the system, affecting some unknown processing of the file /admin/profile.php. The manipulation of the argument name leads to cross-site scripting. T...

CVE-2024-11661

A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file profile.php of the component Profile Image Handler. The manipulation of the argument image leads to unrestricted upload. The...

PT-2024-17171 · Unknown · Codezips Free Exam Hall Seating Management System

Name of the Vulnerable Software and Affected Versions: Codezips Free Exam Hall Seating Management System version 1.0 Description: A vulnerability was found in the Profile Image Handler component of the system, affecting the file profile.php. The manipulation of the image argument leads to...

PT-2024-16527 · Unknown · Codezips Online Institute Management System

Name of the Vulnerable Software and Affected Versions: Codezips Online Institute Management System versions up to 1.0 Description: A critical vulnerability was found in the Codezips Online Institute Management System. This issue affects unknown code of the file /profile.php. The manipulation of t...

CVE-2024-10557

A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /file/updateprofile.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely...

PT-2024-16366 · Code Projects · Blood Bank Management System

Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank Management System version 1.0 Description: A vulnerability has been found in the Blood Bank Management System, affecting an unknown functionality of the file /file/updateprofile.php. The manipulation leads to cross-si...

PHPGurukul IFSC Code Finder Project 安全漏洞

PHPGurukul IFSC Code Finder Project is an IFSC code finder project from PHPGurukul. A security vulnerability exists in version v1.0 of the PHPGurukul IFSC Code Finder Project, which originates from a reflected cross-site scripting vulnerability contained in the searchifsccode parameter in the...

PT-2024-16291 · Sourcecodester · Sourcecodester Kortex Lite Advocate Office Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Kortex Lite Advocate Office Management System version 1.0 Description: A critical issue has been found in the component POST Parameter Handler, specifically in the file /kortex lite/control/edit profile.php. The manipulation of...

CVE-2024-5137

A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php of the component Searchbar. The manipulation leads to cross site scripting. The attack can be launched...

PT-2024-34538 · Unknown · Campcodes Complete Web-Based School Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown functionality of the file /view/teacher profile.php. The manipulation of the index argument leads to...

CVE-2024-4512

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointmen...

USN-6744-3 pillow vulnerability

USN-6744-1 fixed a vulnerability in Pillow. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Hugo van Kemenade discovered that Pillow was not properly performing bounds checks when processing an ICC file, which could lead to a buffer overflow. If a...

PT-2024-22041 · Unknown · Campcodes Online Marriage Registration System

Name of the Vulnerable Software and Affected Versions: Campcodes Online Marriage Registration System version 1.0 Description: A problem was found in the system, affecting the /admin/admin-profile.php file. The issue involves the manipulation of the adminname argument, leading to cross-site...

PT-2024-21991 · Unknown · Campcodes Complete Online Beauty Parlor Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Beauty Parlor Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown functionality of the file /admin/admin-profile.php. The manipulation of the adminname argument...

PT-2024-18386 · Sourcecodester · Sourcecodester Employee Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Management System version 1.0 Description: A critical issue affects some unknown functionality of the file /myprofile.php. The manipulation of the id argument with the input 1%20or%201=1 leads to SQL injection. The...