EUVD-2020-26494

Malware in sbrugna...

EUVD-2025-5752

Malicious code in bioql PyPI...

CVE-2025-5249 PHPGurukul News Portal Project add-category.php sql injection

A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-category.php. The manipulation of the argument Category leads to sql injection. The attack can be launched remotely. T...

CVE-2025-5249 PHPGurukul News Portal Project add-category.php sql injection

A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-category.php. The manipulation of the argument Category leads to sql injection. The attack can be launched remotely. T...

CVE-2020-5308

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php...

CVE-2025-3825

CVE-2025-3825 affects SourceCodester Web-based Pharmacy Product Management System v1.0, specifically the add-category.php file. The vulnerability arises from manipulation of the txtcategory_name parameter, leading to cross-site scripting. The issue can be triggered remotely and, per connected sou...

CVE-2025-3825 SourceCodester Web-based Pharmacy Product Management System add-category.php cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this issue is some unknown functionality of the file add-category.php. The manipulation of the argument txtcategoryname leads to cross site scriptin...

CVE-2025-3265 PHPGurukul e-Diary Management System add-category.php sql injection

A vulnerability classified as critical was found in PHPGurukul e-Diary Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-category.php. The manipulation of the argument Category leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2025-3265

The CVE-2025-3265 entry affects PHPGurukul e-Diary Management System v1.0, specifically the code path handling the Category argument in /add-category.php. The vulnerability arises from improper handling of the Category parameter, enabling SQL injection via remote exploitation. Public disclosures ...

PT-2025-15041 · Unknown · Phpgurukul E-Diary Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul e-Diary Management System version 1.0 Description: A critical issue was found in the PHPGurukul e-Diary Management System, affecting an unknown functionality of the file "add-category.php". The manipulation of the Category argument...

CVE-2024-0355 PHPGurukul Dairy Farm Shop Management System add-category.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System up to 1.1. Affected is an unknown function of the file add-category.php. The manipulation of the argument category leads to sql injection. The exploit has been disclosed to the public and...

CVE-2024-0355 PHPGurukul Dairy Farm Shop Management System add-category.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System up to 1.1. Affected is an unknown function of the file add-category.php. The manipulation of the argument category leads to sql injection. The exploit has been disclosed to the public and...

CVE-2023-3883 Campcodes Beauty Salon Management System add-category.php cross site scripting

A vulnerability, which was classified as problematic, was found in Campcodes Beauty Salon Management System 1.0. This affects an unknown part of the file /admin/add-category.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. T...

CVE-2020-10392

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-category.php by adding a question mark ? followed by the payload...

CVE-2020-10480

CVE-2020-10480 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability is a cross-site request forgery (CSRF) in admin/add-category.php that allows an attacker to add a new category via a crafted request, without requiring authentication. The root cause is insufficient CSRF protection o...

CVE-2020-10392

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-category.php by adding a question mark ? followed by the payload...

CVE-2020-10392

CVE-2020-10392 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are handled in admin/header.php, enabling Reflected XSS in pages such as admin/add-category.php when a payload is injected after a question mark in the URI. The Red Hat context confirms the same ...

CVE-2020-5308

PHPGurukul Dairy Farm Shop Management System 1.0 is affected by SQL injection (CVE-2020-5307) as demonstrated by input vectors in index.php (username), add-category.php (category, CategoryCode), add-company.php (CompanyName), and add-product.php (ProductName, ProductPrice). Root cause: lack of va...

CVE-2020-5307

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName and ProductPrice parameters in...

Sql injection

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName and ProductPrice parameters in...