PT-2025-46961

Name of the Vulnerable Software and Affected Versions PHPGurukul Student Record System version 3.20 Description The PHPGurukul Student Record System is affected by a Cross-Site Scripting XSS issue. The issue is located in the '/admin-profile.php' file and involves the adminname and aemailid...

EUVD-2025-36230

A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. The impacted element is an unknown function of the file admin-profile.php. Executing manipulation of the argument adminname/email can lead to cross site scripting. The attack may be launched remotely. The exploit has been...

CVE-2025-11595

A vulnerability was found in Campcodes Online Apartment Visitor Management System 1.0. Impacted is an unknown function of the file /admin-profile.php. Performing a manipulation of the argument mobilenumber results in sql injection. Remote exploitation of the attack is possible. The exploit has be...

EUVD-2025-7432

Malicious code in bioql PyPI...

CVE-2025-10083 SourceCodester Pet Grooming Management Software profile.php unrestricted upload

A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/profile.php. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been publicl...

Online Banquet Booking System Cross-Site Scripting Vulnerability

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which originates from the failure to strictly filter the adminname parameter in the /admin/admin-profile.php file. An attacker can exploit this...

CVE-2025-7942

A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be...

PHPGurukul Online Banquet Booking System 安全漏洞

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which originates from the failure to strictly filter the adminname parameter in the /admin/admin-profile.php file. An attacker can exploit this...

PT-2025-30262 · Unknown · Phpgurukul Online Banquet Booking System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Online Banquet Booking System version 1.0 Description: A problematic vulnerability exists in an unknown functionality of the file /admin/admin-profile.php. Manipulation of the adminname argument leads to cross-site scripting. The...

PHPGurukul Apartment Visitors Management System 代码注入漏洞

PHPGurukul Apartment Visitors Management System is an apartment visitor management system from PHPGurukul. A code injection vulnerability exists in version 1.0 of the PHPGurukul Apartment Visitors Management System, which originates from cross-site scripting due to improper handling of the...

CVE-2025-6333

A vulnerability, which was classified as critical, was found in PHPGurukul Directory Management System 2.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to initiate the attack remotely. The...

PHPGurukul Notice Board System 安全漏洞

Notice Board System is a bulletin board system. A SQL injection vulnerability exists in the Notice Board System, which originates from a lack of validation of externally-entered SQL statements in the parameter mobilenumber in file /admin-profile.php. An attacker can exploit this vulnerability to...

PT-2025-23893 · Unknown · Phpgurukul Notice Board System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Notice Board System version 1.0 Description: A critical vulnerability has been found in the PHPGurukul Notice Board System, affecting an unknown functionality of the file /admin-profile.php. The manipulation of the mobilenumber...

Complaint Management System /admin/admin-profile.php File SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobilenumber in the file /admin/admin-profile.php. An attacker can...

CVE-2025-4861

A vulnerability classified as critical was found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. The attack can be launched...

PHPGurukul Beauty Parlour Management System 注入漏洞

Beauty Parlour Management System is a software system for standardizing salon business processes and improving management efficiency. Beauty Parlour Management System suffers from a SQL injection vulnerability, which originates from the lack of validation of the contactnumber parameter in the fil...

Company Visitor Management System /admin-profile.php File SQL Injection Vulnerability

Company Visitor Management System is a visitor management system. Company Visitor Management System is vulnerable to a SQL injection vulnerability that originates from an incorrect manipulation of the parameter adminname in the file /admin-profile.php that results in SQL injection. No details of...

PHPGurukul Company Visitor Management System SQL注入漏洞

Company Visitor Management System is a visitor management system. Company Visitor Management System is vulnerable to a SQL injection vulnerability that originates from an incorrect manipulation of the parameter adminname in the file /admin-profile.php that results in SQL injection. No details of...

CVE-2025-3370

A vulnerability classified as critical has been found in PHPGurukul Men Salon Management System 1.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2025-2646 PHPGurukul Art Gallery Management System admin-profile.php sql injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. The attack can be...