215 matches found
PT-2025-40398
Name of the Vulnerable Software and Affected Versions PHPGurukul Online Shopping Portal Project versions 2.1 Description The software is susceptible to a SQL Injection issue. This flaw is located in the /shopping/login.php file and can be triggered through the fullname parameter. Recommendations...
CVE-2025-61096
PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login.php via the fullname parameter...
CVE-2025-61096
The CVE-2025-61096 entry affects PHPGurukul Online Shopping Portal Project v2.1. Affected component: /shopping/login.php fullname parameter. Root cause: SQL injection due to lack of input validation/escaping in fullname, enabling arbitrary SQL execution. Documented impact: unauthorized access to ...
Online Fire Reporting System 跨站脚本漏洞
Online Fire Reporting System is an online fire reporting system developed by Carlo Montero, an individual developer. A cross-site scripting vulnerability exists in Online Fire Reporting System version 1.2, which stems from insufficient input validation of the parameters fullname, location, and...
CVE-2025-57151
phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...
Complaint Management System userprofile.php file cross-site scripting vulnerability
Complaint Management System is a complaint management system. A cross-site scripting vulnerability exists in Complaint Management System, which stems from a lack of effective filtering and escaping of user-supplied data in the fullname parameter of admin/userprofile.php, for which no detailed...
CVE-2025-57151
phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...
CVE-2025-57151
phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...
CVE-2025-57151
phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...
CVE-2025-57151
phpgurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS in admin/userprofile.php via the fullname parameter...
PT-2025-35727
Name of the Vulnerable Software and Affected Versions: phpgurukul Complaint Management System version 2.0 Description: The phpgurukul Complaint Management System is susceptible to a Cross-Site Scripting XSS issue in the admin/userprofile.php file. The vulnerability is triggered through the fullna...
PHPGurukul Complaint Management System 安全漏洞
Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements for the fullname, email, and contactno parameters in user/registration.php. An...
CVE-2025-57147
CVE-2025-57147 affects the phpgurukul Complaint Management System 2.0. The vulnerability is in the user/registration.php flow where input validation is missing for multiple parameters (fullname, email, contactno), enabling a SQL Injection . The sourced details indicate a high impact on confidenti...
CVE-2025-57151
CVE-2025-57151 affects phpgurukul Complaint Management System 2.0. The vulnerability is a reflected/stored Cross-Site Scripting (XSS) in admin/userprofile.php triggered via the fullname parameter due to insufficient filtering/escaping of user-supplied data. CVSSv3.1 base score 8.8 (HIGH) with net...
Directory Management System Cross-Site Scripting Vulnerability
Directory Management System is a directory management system. Directory Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter fullname in the file /admin/add-directory.php, which can ...
CVE-2025-9656 PHPGurukul Directory Management System add-directory.php cross site scripting
A security vulnerability has been detected in PHPGurukul Directory Management System 2.0. This vulnerability affects unknown code of the file /admin/add-directory.php. The manipulation of the argument fullname leads to cross site scripting. The attack may be initiated remotely. The exploit has be...
PT-2025-35230
Name of the Vulnerable Software and Affected Versions: PHPGurukul Directory Management System version 2.0 Description: A security issue has been identified in PHPGurukul Directory Management System 2.0. The vulnerability affects unknown code within the /admin/add-directory.php file. Manipulation ...
PHPGurukul Directory Management System 安全漏洞
Directory Management System is a directory management system. Directory Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter fullname in the file /admin/add-directory.php, which can ...
CVE-2025-45938
Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting XSS via the Jira fullName parameter...
CVE-2025-45938
Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting XSS via the Jira fullName parameter...