CVE-2024-55271

A Cross-Site Request Forgery CSRF vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint...

CVE-2024-55271

CVE-2024-55271 concerns a CSRF flaw in phpgurukul Gym Management System 1.0, specifically the /profile.php endpoint in the User Panel. The Red Hat/NVD/osv entries and the community exploit page consistently describe a CSRF vulnerability where profile updates (e.g., name, address, phone) can be mo...

CVE-2024-55271

A Cross-Site Request Forgery CSRF vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint...

CVE-2024-55271

A Cross-Site Request Forgery CSRF vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint...

PT-2026-20215

A Cross-Site Request Forgery CSRF vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint...

CVE-2024-55271

A Cross-Site Request Forgery CSRF vulnerability has been identified in phpgurukul Gym Management System 1.0. This issue is present in the profile update functionality of the User Panel, specifically the /profile.php endpoint...

PHPGurukul Gym Management System 安全漏洞

PHPGurukul Gym Management System is a gym management system developed by PHPGurukul Inc. Version 1.0 of the PHPGurukul Gym Management System has a security vulnerability. This vulnerability stems from the cross-site request forgery feature in the user panel configuration file update function, whi...

CVE-2018-10135

iScripts eSwap v2.4 has Reflected XSS via the "catwiseproducts.php" catid parameter in the User Panel...

EUVD-2018-2213

Malware in sbrugna...

EUVD-2018-3501

Malware in sbrugna...

EUVD-2018-3409

Malware in sbrugna...

EUVD-2018-3385

Malware in sbrugna...

EUVD-2018-3408

Malware in sbrugna...

EUVD-2017-9073

Malware in sbrugna...

EUVD-2025-14656

Malicious code in bioql PyPI...

CVE-2025-5544

A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...

CVE-2018-11470

iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User Panel...

CVE-2018-11372

iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter...

CVE-2018-11373

iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter...

CVE-2025-45953

A vulnerability was found in PHPGurukul Hostel Management System 2.1 in the /hostel/change-password.php file of the user panel - Change Password component. Improper handling of session data allows a Session Hijacking attack, exploitable remotely...