PT-2025-19947 · Unknown · Phpgurukul Company Visitor Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Company Visitor Management System version 2.0 Description: A critical vulnerability has been found in the PHPGurukul Company Visitor Management System. The issue affects an unknown function of the file /admin-profile.php. The...

CVE-2025-3370

Summary: CVE-2025-3370 affects PHPGurukul Men Salon Management System 1.0, with a SQL injection in the /admin/admin-profile.php endpoint triggered by manipulating the contactnumber parameter. The vulnerability can be exploited remotely and the exploit has been disclosed publicly. Other parameters...

CVE-2025-3370 PHPGurukul Men Salon Management System admin-profile.php sql injection

A vulnerability classified as critical has been found in PHPGurukul Men Salon Management System 1.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2025-2646 PHPGurukul Art Gallery Management System admin-profile.php sql injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. The attack can be...

CVE-2025-2380 PHPGurukul Apartment Visitors Management System admin-profile.php sql injection

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin-profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely. T...

CVE-2025-2380 PHPGurukul Apartment Visitors Management System admin-profile.php sql injection

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin-profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely. T...

CVE-2024-13083 PHPGurukul Land Record System admin-profile.php cross site scripting

A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument Admin Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit...

CVE-2024-13083 PHPGurukul Land Record System admin-profile.php cross site scripting

A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument Admin Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit...

CVE-2024-10159

Summary of CVE-2024-10159 : The PHPGurukul Boat Booking System 1.0 contains a SQL injection vulnerability in the My Profile Page component, specifically via /admin/profile.php. The vulnerability arises from manipulating parameters such as sadminusername, fullname, emailid, and mobilenumber, enabl...

CVE-2024-5137 PHPGurukul Directory Management System Searchbar admin-profile.php cross site scripting

A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php of the component Searchbar. The manipulation leads to cross site scripting. The attack can be launched...

CVE-2024-5137 PHPGurukul Directory Management System Searchbar admin-profile.php cross site scripting

A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php of the component Searchbar. The manipulation leads to cross site scripting. The attack can be launched...

CVE-2024-2780 Campcodes Online Marriage Registration System admin-profile.php cross site scripting

A vulnerability was found in Campcodes Online Marriage Registration System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be initiated...

CVE-2024-2780

CVE-2024-2780 affects Campcodes Online Marriage Registration System 1.0. A cross-site scripting flaw exists in the admin-profile.php file via the adminname parameter, exploitable remotely. Public disclosure is noted. Red Hat and other sources corroborate the same issue. The root cause is input ha...

CVE-2024-2769 Campcodes Complete Online Beauty Parlor Management System admin-profile.php sql injection

A vulnerability was detected in Campcodes Complete Online Beauty Parlor Management System 1.0. The affected element is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument adminname/email results in sql injection. The attack may be launched remotely. The...

CVE-2024-2719 Campcodes Complete Online DJ Booking System admin-profile.php cross site scripting

A vulnerability classified as problematic has been found in Campcodes Complete Online DJ Booking System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely...

PT-2024-21725

Name of the Vulnerable Software and Affected Versions Campcodes Complete Online DJ Booking System version 1.0 Description A problematic issue has been found in the software. The manipulation of the adminname argument in the file /admin/admin-profile.php leads to cross site scripting. It is possib...

CVE-2023-31934

Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php...

Cross site scripting

Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the emial parameter of admin-profile.php...

CVE-2023-31935

CVE-2023-31935 affects Rail Pass Management System v1.0. A Cross Site Scripting vulnerability exists in the emial parameter of admin-profile.php, enabling a remote attacker to obtain sensitive information. The Red Hat, NVD, CVE lists, and related sources in the connected documents confirm the bas...

CVE-2023-31934

CVE-2023-31934 is a Cross-Site Scripting vulnerability affecting Rail Pass Management System v1.0, enabling a remote attacker to exfiltrate sensitive data via the adminname parameter in admin-profile.php. The Red Hat, NVD, CVE list, PRION, CNNVD, and PT-Security entries consistently describe an X...