Lucene search
K

24 matches found

NVD
NVD
added 2026/04/13 5:16 p.m.14 views

CVE-2026-6193

A security flaw has been discovered in PHPGurukul Daily Expense Tracking System 1.1. Affected is an unknown function of the file /register.php. The manipulation of the argument email results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may...

7.5CVSS0.00254EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.11 views

CVE-2020-10107

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS, as demonstrated by the ExpenseItem or ExpenseCost parameter in manage-expense.php...

5.4CVSS6.7AI score0.00531EPSS
Exploits1References1
CVE
CVE
added 2025/06/03 11:31 p.m.46 views

CVE-2025-5546

PHPGurukul Daily Expense Tracker System 1.1 is affected by a SQL injection in /expense-reports-detailed.php via the fromdate/todate parameters. The issue allows remote attackers to execute arbitrary SQL commands and potentially access sensitive data. Public exploit information is present in sever...

8.8CVSS7.8AI score0.00325EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 7:27 p.m.8 views

CVE-2021-26304

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter...

5.4CVSS5.6AI score0.00583EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/19 9:0 a.m.20 views

CVE-2025-4925 PHPGurukul Daily Expense Tracker System expense-monthwise-reports-detailed.php sql injection

A vulnerability has been found in PHPGurukul Daily Expense Tracker System 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /expense-monthwise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The...

7.5CVSS0.00415EPSS
Exploits1References5
NVD
NVD
added 2025/05/19 3:15 a.m.35 views

CVE-2025-4908

A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...

9.8CVSS0.00478EPSS
Exploits1References5
NVD
NVD
added 2025/05/19 3:15 a.m.15 views

CVE-2025-4907

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The...

9.8CVSS0.00478EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.5 views

PT-2025-21877 · Unknown · Phpgurukul Daily Expense Tracker System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical vulnerability has been found in PHPGurukul Daily Expense Tracker System. This affects an unknown part of the file /expense-datewise-reports-detailed.php. The...

9.8CVSS7.7AI score0.00478EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.5 views

PT-2025-21929 · Unknown · Phpgurukul Daily Expense Tracker System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical issue has been found in the system, affecting an unknown functionality of the file /expense-monthwise-reports-detailed.php. The manipulation of the fromdate and todat...

9.8CVSS7.5AI score0.00415EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/05/18 3:2 p.m.11 views

CVE-2025-4785

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user-profile.php. The manipulation of the argument fullname/contactnumber leads to sql injection. The attack may be launched...

9.8CVSS7.3AI score0.00596EPSS
Exploits1References1
NVD
NVD
added 2025/05/16 3:15 p.m.20 views

CVE-2025-4785

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user-profile.php. The manipulation of the argument fullname/contactnumber leads to sql injection. The attack may be launched...

9.8CVSS0.00596EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/05/16 3:0 p.m.20 views

CVE-2025-4785 PHPGurukul Daily Expense Tracker System user-profile.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user-profile.php. The manipulation of the argument fullname/contactnumber leads to sql injection. The attack may be launched...

7.5CVSS0.00596EPSS
Exploits1References6
CVE
CVE
added 2025/05/16 3:0 p.m.36 views

CVE-2025-4785

CVE-2025-4785 affects PHPGurukul Daily Expense Tracker System version 1.1. The vulnerability is a SQL injection in the file /user-profile.php triggered by manipulating the fullname and contactnumber parameters, with remote exploit potential. Multiple connected sources confirm the issue and indica...

9.8CVSS7.5AI score0.00596EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2025/05/16 2:15 a.m.36 views

CVE-2025-4736

A vulnerability was found in PHPGurukul Daily Expense Tracker 1.1 and classified as critical. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been...

9.8CVSS0.00421EPSS
Exploits1References5
CVE
CVE
added 2025/05/16 1:31 a.m.34 views

CVE-2025-4736

The CVE concerns PHPGurukul Daily Expense Tracker 1.1. The vulnerability is a SQL injection in /register.php triggered by manipulating the email parameter, with remote exploitation and a publicly disclosed exploit. No patch/version fix details are provided in the documents. A temporary workaround...

9.8CVSS7.5AI score0.00421EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/05/16 1:31 a.m.38 views

CVE-2025-4736 PHPGurukul Daily Expense Tracker register.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker 1.1 and classified as critical. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS0.00421EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/05/16 1:31 a.m.10 views

CVE-2025-4736 PHPGurukul Daily Expense Tracker register.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker 1.1 and classified as critical. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS7.7AI score0.00421EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.4 views

PT-2025-21595 · Unknown · Phpgurukul Daily Expense Tracker

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker version 1.1 Description: A critical issue affects an unknown functionality of the file /register.php. The manipulation of the email argument leads to SQL injection. The attack can be launched remotely. The...

9.8CVSS7.6AI score0.00421EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.6 views

PT-2025-21666 · Unknown · Phpgurukul Daily Expense Tracker System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical issue was found in the system, affecting some unknown functionality of the file /user-profile.php. The manipulation of the fullname and contactnumber arguments leads ...

9.8CVSS7.6AI score0.00596EPSS
Exploits1References8
OSV
OSV
added 2025/02/12 4:15 p.m.3 views

CVE-2025-25349

PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense.php via the costitem parameter...

9.8CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder