CVE-2025-70893

A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1.0 within the adminprofile.php endpoint. The application fails to properly sanitize user-supplied input provided via the adminname parameter, allowing authenticated attackers to inject arbitrary SQL...

PHPGurukul Cyber Cafe Management System 安全漏洞

Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a SQL injection vulnerability that stems from the adminprofile.php endpoint's adminname parameter not being sufficiently cleaned of user input, no details of the vulnerability are availab...

Access Control Bypass

Overview org.keycloak:keycloak-services is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Access Control Bypass via the /admin/realms/master/users/profile endpoint. An attacker can access internal us...

PT-2025-46962

Name of the Vulnerable Software and Affected Versions PHPGurukul Student Record System version 3.2.0 Description The software is susceptible to a SQL Injection issue through the adminname and aemailid parameters in the '/admin-profile.php' API endpoint. This allows for potential unauthorized acce...

PT-2024-34553 · Unknown · Phpgurukul Ifsc Code Finder Project

Name of the Vulnerable Software and Affected Versions: PHPGurukul IFSC Code Finder Project version 1.0 Description: A Reflected Cross Site Scripting XSS issue was found in the "/ifscfinder/admin/profile.php" API endpoint, which allows remote attackers to execute arbitrary code via the...