Lucene search
K

265 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/13 12:0 a.m.2 views

CVE-2025-51414

In Phpgurukul Online Course Registration v3.1, an arbitrary file upload vulnerability was discovered within the profile picture upload functionality on the /my-profile.php page...

5.9AI score0.00305EPSS
Exploits0References3
NVD
NVD
added 2026/04/09 12:16 a.m.8 views

CVE-2026-5814

A security vulnerability has been detected in PHPGurukul Online Course Registration 3.1. This issue affects some unknown processing of the file /admin/checkavailability.php. The manipulation of the argument regno leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00254EPSS
Exploits0References5
CVE
CVE
added 2026/04/08 10:45 p.m.13 views

CVE-2026-5813

PHPGurukul Online Course Registration 3.1 is affected by a SQL injection in the file /check_availability.php, triggered by manipulating the cid parameter. The vulnerability can be exploited remotely and the exploit is publicly available. The CVSS metrics indicate a Network attack vector, low comp...

7.5CVSS5.8AI score0.00259EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/08 10:45 p.m.22 views

CVE-2026-5813 PHPGurukul Online Course Registration check_availability.php sql injection

A weakness has been identified in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of the file /checkavailability.php. Executing a manipulation of the argument cid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...

7.5CVSS0.00259EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31552

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Course Registration version 3.1 Description A security issue exists in PHPGurukul Online Course Registration 3.1 related to the processing of the /admin/check availability.php file. Manipulation of the regno argument can lead...

7.5CVSS7.1AI score0.00254EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/04/07 10:52 a.m.6 views

CVE-2026-5636

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS5.7AI score0.00246EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/06 10:57 a.m.4 views

CVE-2026-5558

A flaw has been found in PHPGurukul PHPGurukul Online Shopping Portal Project up to 2.1. Impacted is an unknown function of the file /pending-orders.php of the component Parameter Handler. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely...

6.5CVSS6.3AI score0.00255EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/06 9:31 a.m.5 views

EUVD-2026-19209

A vulnerability has been found in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /admin/update-image2.php of the component Parameter Handler. The manipulation of the argument filename leads to sql injection. The attack is possible to be...

6.5CVSS5.7AI score0.00192EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/06 9:31 a.m.4 views

EUVD-2026-19192

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS5.7AI score0.00246EPSS
Exploits0References6
NVD
NVD
added 2026/04/06 8:16 a.m.3 views

CVE-2026-5636

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS0.00246EPSS
Exploits0References5
CVE
CVE
added 2026/04/06 7:45 a.m.16 views

CVE-2026-5635

CVE-2026-5635 affects PHPGurukul Online Shopping Portal Project 2.1. The vulnerability is in the Parameter Handler’s /categorywise-products.php, where manipulating the cid parameter leads to SQL injection. Attacks can be launched remotely and the exploit has been released publicly. Concrete remed...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/05 4:30 p.m.8 views

CVE-2026-5583 PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection

A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/05 4:30 p.m.29 views

CVE-2026-5583 PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection

A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...

6.5CVSS0.00246EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/05 10:0 a.m.26 views

CVE-2026-5558 PHPGurukul PHPGurukul Online Shopping Portal Project Parameter pending-orders.php sql injection

A flaw has been found in PHPGurukul PHPGurukul Online Shopping Portal Project up to 2.1. Impacted is an unknown function of the file /pending-orders.php of the component Parameter Handler. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely...

6.5CVSS0.00255EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/05 12:0 a.m.9 views

PHPGurukul Online Shopping Portal Project SQL注入漏洞

The PHPGurukul Online Shopping Portal Project is an online shopping portal project of PHPGurukul Corporation. Version 2.1 of the PHPGurukul Online Shopping Portal Project has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter “pid” in the...

6.5CVSS6.7AI score0.00246EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/01/21 12:38 p.m.160 views

Exploit for SQL Injection in Phpgurukul Online_Shopping_Portal

CVE-2023-38890 – Online Shopping Portal 3.1 Remote C...

8.8CVSS5.6AI score0.00985EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.7 views

CVE-2020-10224

An unauthenticated file upload vulnerability has been identified in adminadd.php in PHPGurukul Online Book Store 1.0. The vulnerability could be exploited by an unauthenticated remote attacker to upload content to the server, including PHP files, which could result in command execution...

9.8CVSS7.4AI score0.05474EPSS
Exploits1References1
NVD
NVD
added 2026/01/09 12:15 a.m.10 views

CVE-2026-0733

A vulnerability was determined in PHPGurukul Online Course Registration System up to 3.1. This impacts an unknown function of the file /onlinecourse/admin/manage-students.php. This manipulation of the argument id/cid causes sql injection. It is possible to initiate the attack remotely. The exploi...

8.8CVSS0.00357EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.10 views

CVE-2025-1582

A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/all-request.php. The manipulation of the argument viewid leads to sql injection. The attack may be launched remotely. The...

9.8CVSS7.2AI score0.00513EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.10 views

CVE-2025-1583

A vulnerability classified as critical has been found in PHPGurukul Online Nurse Hiring System 1.0. This affects an unknown part of the file /admin/search-report-details.php. The manipulation of the argument searchinput leads to sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS7.3AI score0.00513EPSS
Exploits0References1
Rows per page
Query Builder