16 matches found
PT-2025-46960
Name of the Vulnerable Software and Affected Versions PHPGurukul Student Record System version 3.20 Description The PHPGurukul Student Record System is affected by a SQL Injection issue. This issue occurs via the currentpassword parameter in the 'change-password.php' file. Exploitation of this...
EUVD-2024-32954
Malicious code in bioql PyPI...
CVE-2025-50485
Improper session invalidation in the component /crm/change-password.php of PHPGurukul Online Course Registration v3.1 allows attackers to execute a session hijacking attack...
CVE-2025-4297 PHPGurukul Men Salon Management System change-password.php sql injection
A vulnerability was found in PHPGurukul Men Salon Management System 2.0. It has been classified as critical. This affects an unknown part of the file /admin/change-password.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...
CVE-2025-4073 PHPGurukul Student Record System change-password.php sql injection
A vulnerability was found in PHPGurukul Student Record System 3.20. It has been classified as critical. Affected is an unknown function of the file /change-password.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2025-4073 PHPGurukul Student Record System change-password.php sql injection
A vulnerability was found in PHPGurukul Student Record System 3.20. It has been classified as critical. Affected is an unknown function of the file /change-password.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to launch the attack remotely. The...
PHPGurukul Hostel Management System 安全漏洞
Hostel Management System is a hostel management system. Hostel Management System has a session hijacking vulnerability that stems from improper handling of session data in the file /hostel/change-password.php, no details of the vulnerability are available at this time...
CVE-2024-10169
A vulnerability classified as critical was found in code-projects Hospital Management System 1.0. This vulnerability affects unknown code of the file change-password.php. The manipulation of the argument cpass leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-10169 code-projects Hospital Management System change-password.php sql injection
A vulnerability classified as critical was found in code-projects Hospital Management System 1.0. This vulnerability affects unknown code of the file change-password.php. The manipulation of the argument cpass leads to sql injection. The attack can be initiated remotely. The exploit has been...
Surya Developer Hostel Management Service Cross-Site Request Forgery Vulnerability
Surya Developer Hostel Management Service is an accommodation management service from Surya Developer India. A cross-site request forgery vulnerability exists in Surya Developer Hostel Management Service version 1.0, which stems from a cross-site request forgery CSRF vulnerability in the file...
CVE-2024-0362
A vulnerability classified as critical was found in PHPGurukul Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/change-password.php. The manipulation of the argument cpass leads to sql injection. The exploit has been disclosed to the...
CVE-2024-0362 PHPGurukul Hospital Management System change-password.php sql injection
A vulnerability classified as critical was found in PHPGurukul Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/change-password.php. The manipulation of the argument cpass leads to sql injection. The exploit has been disclosed to the...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF vulnerability in Change-password.php in phpgurukul user management system in php using stored procedure V1.0, allows attackers to change the password to an arbitrary account...
CVE-2021-26800
Cross Site Request Forgery CSRF vulnerability in Change-password.php in phpgurukul user management system in php using stored procedure V1.0, allows attackers to change the password to an arbitrary account...
CVE-2021-26800
The CVE-2021-26800 entry concerns a CSRF vulnerability in the Change-password.php flow of the PHPgurukul user management system (PHP, using stored procedures, V1.0). Exploitation would enable an attacker to change the password for an arbitrary account, as described in multiple sources. The connec...
rz.uni-augsburg.de XSS vulnerability
Open Bug Bounty ID: OBB-670714 Description| Value ---|--- Affected Website:| rz.uni-augsburg.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...