Student Record System add-course.php File SQL Injection Vulnerability

Student Record System is a software application. Student Record System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the course-short, course-full, and cdate parameters in add-course.php. An attacker can exploit this...

CVE-2024-44640

PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php...

CVE-2024-44640

PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php...

CVE-2024-44640

PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php...

CVE-2024-44640

CVE-2024-44640 affects PHPGurukul Student Record System 3.20. The vulnerability is a SQL Injection in add-course.php, exploitable via three parameters: course-short, course-full, and cdate. The underlying issue is lack of input validation/sanitization for externally supplied SQL statements in tho...

PT-2025-46970

Name of the Vulnerable Software and Affected Versions PHPGurukul Student Record System version 3.2.0 Description The software contains a SQL Injection flaw through the course-short, course-full, and cdate parameters in the 'add-course.php' file. This allows for potential unauthorized database...