Lucene search
K

215 matches found

Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.7 views

PT-2025-40398

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Shopping Portal Project versions 2.1 Description The software is susceptible to a SQL Injection issue. This flaw is located in the /shopping/login.php file and can be triggered through the fullname parameter. Recommendations...

6.5CVSS7.6AI score0.0024EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/10/02 12:0 a.m.5 views

CVE-2025-61096

PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login.php via the fullname parameter...

0.0024EPSS
Exploits1References2
CVE
CVE
added 2025/10/02 12:0 a.m.17 views

CVE-2025-61096

The CVE-2025-61096 entry affects PHPGurukul Online Shopping Portal Project v2.1. Affected component: /shopping/login.php fullname parameter. Root cause: SQL injection due to lack of input validation/escaping in fullname, enabling arbitrary SQL execution. Documented impact: unauthorized access to ...

6.5CVSS7.6AI score0.0024EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.3 views

Online Fire Reporting System 跨站脚本漏洞

Online Fire Reporting System is an online fire reporting system developed by Carlo Montero, an individual developer. A cross-site scripting vulnerability exists in Online Fire Reporting System version 1.2, which stems from insufficient input validation of the parameters fullname, location, and...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/05 12:34 a.m.16 views

CVE-2025-57151

phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...

8.8CVSS6.3AI score0.00561EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/05 12:0 a.m.2 views

Complaint Management System userprofile.php file cross-site scripting vulnerability

Complaint Management System is a complaint management system. A cross-site scripting vulnerability exists in Complaint Management System, which stems from a lack of effective filtering and escaping of user-supplied data in the fullname parameter of admin/userprofile.php, for which no detailed...

8.8CVSS6.2AI score0.00561EPSS
Exploits1References1
OSV
OSV
added 2025/09/03 3:15 p.m.3 views

CVE-2025-57151

phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...

8.8CVSS5.8AI score0.00561EPSS
Exploits1References1
NVD
NVD
added 2025/09/03 3:15 p.m.4 views

CVE-2025-57151

phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...

8.8CVSS0.00561EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/09/03 12:0 a.m.9 views

CVE-2025-57151

phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...

0.00561EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/09/03 12:0 a.m.2 views

CVE-2025-57151

phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...

5.7AI score0.00561EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.5 views

PT-2025-35727

Name of the Vulnerable Software and Affected Versions: phpgurukul Complaint Management System version 2.0 Description: The phpgurukul Complaint Management System is susceptible to a Cross-Site Scripting XSS issue in the admin/userprofile.php file. The vulnerability is triggered through the fullna...

8.8CVSS5.7AI score0.00561EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.5 views

PHPGurukul Complaint Management System 安全漏洞

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements for the fullname, email, and contactno parameters in user/registration.php. An...

7.5CVSS8.2AI score0.00451EPSS
Exploits1References2
CVE
CVE
added 2025/09/03 12:0 a.m.19 views

CVE-2025-57147

CVE-2025-57147 affects the phpgurukul Complaint Management System 2.0. The vulnerability is in the user/registration.php flow where input validation is missing for multiple parameters (fullname, email, contactno), enabling a SQL Injection . The sourced details indicate a high impact on confidenti...

7.5CVSS7.4AI score0.00451EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/09/03 12:0 a.m.16 views

CVE-2025-57151

CVE-2025-57151 affects phpgurukul Complaint Management System 2.0. The vulnerability is a reflected/stored Cross-Site Scripting (XSS) in admin/userprofile.php triggered via the fullname parameter due to insufficient filtering/escaping of user-supplied data. CVSSv3.1 base score 8.8 (HIGH) with net...

8.8CVSS5.7AI score0.00561EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2025/09/02 12:0 a.m.2 views

Directory Management System Cross-Site Scripting Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter fullname in the file /admin/add-directory.php, which can ...

6.1CVSS6.3AI score0.0032EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/29 3:32 p.m.2 views

CVE-2025-9656 PHPGurukul Directory Management System add-directory.php cross site scripting

A security vulnerability has been detected in PHPGurukul Directory Management System 2.0. This vulnerability affects unknown code of the file /admin/add-directory.php. The manipulation of the argument fullname leads to cross site scripting. The attack may be initiated remotely. The exploit has be...

5.3CVSS5.6AI score0.0032EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.6 views

PT-2025-35230

Name of the Vulnerable Software and Affected Versions: PHPGurukul Directory Management System version 2.0 Description: A security issue has been identified in PHPGurukul Directory Management System 2.0. The vulnerability affects unknown code within the /admin/add-directory.php file. Manipulation ...

5.3CVSS4AI score0.0032EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/08/29 12:0 a.m.5 views

PHPGurukul Directory Management System 安全漏洞

Directory Management System is a directory management system. Directory Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter fullname in the file /admin/add-directory.php, which can ...

6.1CVSS6.2AI score0.0032EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/07/05 12:25 a.m.10 views

CVE-2025-45938

Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting XSS via the Jira fullName parameter...

5.4CVSS5.7AI score0.00201EPSS
Exploits0References1
NVD
NVD
added 2025/07/03 3:15 p.m.6 views

CVE-2025-45938

Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting XSS via the Jira fullName parameter...

5.4CVSS0.00201EPSS
Exploits0References2
Rows per page
Query Builder