Lucene search
K

115 matches found

CNNVD
CNNVD
added 2025/11/14 12:0 a.m.3 views

PHPGurukul Student Record System 安全漏洞

Student Record System is a software application. Student Record System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the adminname and aemailid parameters of admin-profile.php. An attacker can exploit this vulnerability t...

6.5CVSS8.1AI score0.00172EPSS
Exploits0References2
CVE
CVE
added 2025/11/14 12:0 a.m.12 views

CVE-2024-44635

CVE-2024-44635 affects PHPGurukul Student Record System 3.20. A cross-site scripting vulnerability exists in admin-profile.php via the adminname and aemailid parameters due to inadequate input handling. This is confirmed across multiple sources (CNVD, Red Hat, NVD, etc.). Impact per the CVSS metr...

6.1CVSS5.8AI score0.00192EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2025/10/31 12:0 a.m.2 views

Curfew e-Pass Management System admin-profile.php file cross-site scripting vulnerability

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter adminname or email in the file...

4.8CVSS6.2AI score0.00238EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/28 6:52 p.m.6 views

CVE-2025-12303

A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. The impacted element is an unknown function of the file admin-profile.php. Executing a manipulation of the argument adminname/email can lead to cross site scripting. The attack may be launched remotely. The exploit has been...

4.8CVSS3AI score0.00238EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/27 6:2 p.m.3 views

EUVD-2025-36230

A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. The impacted element is an unknown function of the file admin-profile.php. Executing manipulation of the argument adminname/email can lead to cross site scripting. The attack may be launched remotely. The exploit has been...

4.8CVSS5AI score0.00238EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.5 views

PT-2025-44003

Name of the Vulnerable Software and Affected Versions PHPGurukul Curfew e-Pass Management System version 1.0 Description A flaw exists in PHPGurukul Curfew e-Pass Management System version 1.0. Manipulation of the adminname/email argument within an unknown function of the admin-profile.php file c...

4.8CVSS2.8AI score0.00238EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-12725

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00257EPSS
Exploits1References2
CNVD
CNVD
added 2025/07/23 12:0 a.m.3 views

Online Banquet Booking System Cross-Site Scripting Vulnerability

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which originates from the failure to strictly filter the adminname parameter in the /admin/admin-profile.php file. An attacker can exploit this...

5.4CVSS6.3AI score0.00306EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/23 12:0 a.m.4 views

Time Table Generator System Cross-Site Scripting Vulnerability

Time Table Generator System is a time table generator system. A cross-site scripting vulnerability exists in Time Table Generator System, which stems from the adminname parameter in the /admin/profile.php file not effectively filtering user input. No details of the vulnerability are available at...

5.4CVSS6.3AI score0.00241EPSS
Exploits1References1
OSV
OSV
added 2025/07/21 10:15 p.m.5 views

CVE-2025-7942

A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be...

5.4CVSS3.7AI score0.00234EPSS
Exploits1References5
OSV
OSV
added 2025/07/21 10:15 p.m.4 views

CVE-2025-7941

A vulnerability, which was classified as problematic, was found in PHPGurukul Time Table Generator System 1.0. Affected is an unknown function of the file /admin/profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely. Th...

5.4CVSS3.8AI score0.00241EPSS
Exploits1References6
OSV
OSV
added 2025/07/21 11:15 a.m.6 views

CVE-2025-7924

A vulnerability classified as problematic was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be launche...

5.4CVSS3.7AI score0.00306EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.6 views

PT-2025-30350 · Unknown · Phpgurukul Time Table Generator System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Time Table Generator System version 1.0 PHPGurukul Taxi Stand Management System version 1.0 Description: A problematic vulnerability exists due to cross site scripting. Manipulation of the adminname argument in the /admin/profile.p...

5.4CVSS4AI score0.00241EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.3 views

PHPGurukul Online Banquet Booking System 安全漏洞

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which originates from the failure to strictly filter the adminname parameter in the /admin/admin-profile.php file. An attacker can exploit this...

5.4CVSS4.5AI score0.00306EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.3 views

PHPGurukul Taxi Stand Management System 代码注入漏洞

Taxi Stand Management System is a cab stand management system. The Taxi Stand Management System suffers from a cross-site scripting vulnerability that originates from the adminname parameter in the /admin/admin-profile.php file not effectively filtering user input. An attacker can exploit this...

5.4CVSS6.2AI score0.00234EPSS
Exploits1References5
OSV
OSV
added 2025/07/20 12:15 a.m.2 views

CVE-2025-7858

A vulnerability classified as problematic has been found in PHPGurukul Apartment Visitors Management System 1.0. This affects an unknown part of the file /admin-profile.php of the component HTTP POST Request Handler. The manipulation of the argument adminname leads to cross site scripting. It is...

5.4CVSS3.9AI score0.00234EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/20 12:0 a.m.4 views

PHPGurukul Apartment Visitors Management System 代码注入漏洞

PHPGurukul Apartment Visitors Management System is an apartment visitor management system from PHPGurukul. A code injection vulnerability exists in version 1.0 of the PHPGurukul Apartment Visitors Management System, which originates from cross-site scripting due to improper handling of the...

5.4CVSS4.9AI score0.00234EPSS
Exploits1References6
OSV
OSV
added 2025/07/07 6:15 p.m.5 views

CVE-2025-7138

A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/admin-profile.php. The manipulation of the argument adminname leads to sql injection. The attack can be initiated remotely. Th...

8.8CVSS5.8AI score0.00361EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.5 views

SourceCodester Best Salon Management System 注入漏洞

SourceCodester Best Salon Management System is SourceCodester open source a salon management system. SourceCodester Best Salon Management System version 1.0 suffers from an injection vulnerability that stems from improper handling of the parameter adminname in the file /panel/admin-profile.php,...

8.8CVSS7AI score0.00361EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.4 views

The vulnerability of the adminprofile.php (/admin/adminprofile.php) script of the Employee Management System allows a hacker to execute arbitrary code.

The vulnerability of the adminprofile.php /admin/adminprofile.php script of the Employee Management System is related to the failure to eliminate special elements during the processing of the AdminName parameter. Exploiting this vulnerability allows an attacker operating remotely to execute...

6.5CVSS6.9AI score0.00366EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder