Lucene search
K

233 matches found

CNNVD
CNNVD
added 2025/05/27 12:0 a.m.4 views

PHPGurukul Online Nurse Hiring System 注入漏洞

PHPGurukul Online Nurse Hiring System is an online nurse hiring system from PHPGurukul, Inc. An injection vulnerability exists in version 1.0 of the PHPGurukul Online Nurse Hiring System, which stems from an incorrect manipulation of the parameter fromdate/todate in the file...

9.8CVSS8AI score0.00415EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/27 12:0 a.m.3 views

PHPGurukul Company Visitor Management System 注入漏洞

Company Visitor Management System is a visitor management system. Company Visitor Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file /bwdates-reports-details.php...

9.8CVSS7.8AI score0.00541EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/05/27 12:0 a.m.3 views

PHPGurukul Student Study Center Management System 注入漏洞

PHPGurukul Student Study Center Management System is a student study center management system from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Student Study Center Management System, which is caused by a SQL injection due to incorrect manipulation of the...

7.2CVSS5.6AI score0.00348EPSS
Exploits1References5
OSV
OSV
added 2025/05/23 3:15 p.m.6 views

CVE-2024-51108

Multiple stored cross-site scripting XSS vulnerabilities in the component /admin/card-bwdates-report.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the fromdate and todate...

5.4CVSS5.9AI score0.00209EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:16 a.m.7 views

CVE-2024-30985

SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters...

9.8CVSS8.8AI score0.00695EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:14 a.m.3 views

CVE-2024-10296

A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/card-bwdates-reports-details.php of the component Report of Medical Card Page. The manipulation of the argume...

7.2CVSS7.1AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:28 a.m.4 views

CVE-2023-27214

Online Student Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities via the fromdate and todate parameters at /eduauth/student/between-date-reprtsdetails.php...

9.8CVSS8.5AI score0.00788EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/23 12:0 a.m.3 views

PHPGurukul Medical Card Generation System 安全漏洞

PHPGurukul Medical Card Generation System is a medical card generation system from PHPGurukul. A security vulnerability exists in version v1.0 of the PHPGurukul Medical Card Generation System due to a stored cross-site scripting attack in the fromdate and todate parameters of the...

5.4CVSS5.9AI score0.00209EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31000)

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of the fromdate/todate parameter in the file /expense-monthwise-reports-detailed.php with...

9.8CVSS8.2AI score0.00415EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-30999)

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. The Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the fromdate/todate parameter of file...

9.8CVSS8.3AI score0.00478EPSS
Exploits1References1
OSV
OSV
added 2025/05/19 3:15 a.m.8 views

CVE-2025-4908

A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...

9.8CVSS5.8AI score0.00478EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/19 12:0 a.m.2 views

PHPGurukul Daily Expense Tracker System 注入漏洞

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of the fromdate/todate parameter in the file /expense-monthwise-reports-detailed.php with...

9.8CVSS7.8AI score0.00415EPSS
Exploits1References5
CNVD
CNVD
added 2025/05/19 12:0 a.m.2 views

Apartment Visitors Management System /admin/bwdates-reports-details.php File SQL Injection Vulnerability

Apartment Visitors Management System is an apartment visitor management system. Apartment Visitors Management System suffers from a SQL injection vulnerability that originates from improper manipulation of the parameter fromdate/todate in the file /admin/bwdates-reports-details.php. An attacker c...

9.8CVSS7.7AI score0.00415EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/19 12:0 a.m.3 views

Apartment Visitors Management System /admin/bwdates-passreports-details.php File SQL Injection Vulnerability

Apartment Visitors Management System is an apartment visitor management system. Apartment Visitors Management System suffers from a SQL injection vulnerability, which originates from improper manipulation of the parameters fromdate/todate in the file /admin/bwdates-passreports-details.php. An...

9.8CVSS7.6AI score0.00415EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/19 12:0 a.m.3 views

PHPGurukul Online Marriage Registration System 注入漏洞

PHPGurukul Online Marriage Registration System is a website builder from PHPGurukul that supports online marriage registration. An injection vulnerability exists in version 1.0 of the PHPGurukul Online Marriage Registration System, which originates from the operation of the parameter...

9.8CVSS7.9AI score0.00415EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/19 12:0 a.m.2 views

PHPGurukul Daily Expense Tracker System 安全漏洞

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. The Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the fromdate/todate parameter of file...

9.8CVSS7.8AI score0.00478EPSS
Exploits1References5
CNVD
CNVD
added 2025/05/13 12:0 a.m.2 views

Online Birth Certificate System /admin/bwdates-reports-details.php File SQL Injection Vulnerability

Online Birth Certificate System is an online birth certificate system. Online Birth Certificate System has a SQL injection vulnerability that originates from an incorrect manipulation of the parameter fromdate in the /admin/bwdates-reports-details.php file that results in SQL injection. No detail...

9.8CVSS8.1AI score0.00266EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/13 12:0 a.m.1 views

Notice Board System bwdates-reports-details.php File SQL Injection Vulnerability

Notice Board System is a bulletin board system. Notice Board System has a SQL injection vulnerability that stems from improper handling of the parameters fromdate/tomdate in the file /bwdates-reports-details.php. No details of the vulnerability are available at this time...

9.8CVSS7.9AI score0.00412EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/13 12:0 a.m.7 views

Online Birth Certificate System between-dates-report.php File SQL Injection Vulnerability

Online Birth Certificate System is an online birth certificate system. Online Birth Certificate System is vulnerable to a SQL injection vulnerability that stems from incorrect manipulation of the parameter fromdate in the file /admin/between-dates-report.php resulting in SQL injection. No details...

9.8CVSS7.8AI score0.00296EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/13 12:0 a.m.1 views

Park Ticketing Management System normal-bwdates-reports-details.php file HTML injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from improper handling of the fromdate and todate parameters in the normal-bwdates-reports-details.php file. No details of the...

5.3CVSS7.2AI score0.00283EPSS
Exploits1References1
Rows per page
Query Builder