6 matches found
EUVD-2025-7286
Malicious code in bioql PyPI...
CVE-2025-4113
The CVE-2025-4113 entry concerns PHPGurukul Curfew e-Pass Management System v1.0. The vulnerability is in the /admin/edit-pass-detail.php endpoint, where the editid parameter is used in a way that enables SQL injection. Multiple connected sources confirm a remote-exploit path with potential to ac...
CVE-2025-4112
CVE-2025-4112 affects PHPGurukul Student Record System v3.20. The issue is a SQL injection in the add-course.php file caused by manipulating the course-short parameter. Impact is potential unauthorized data access/steal from the database; exploitation is described as remote. Multiple connected so...
CVE-2025-4070
The CVE-2025-4070 entry concerns PHPGurukul Rail Pass Management System 1.0. A SQL injection vulnerability exists in the /admin/changeimage.php endpoint, triggered by the editid parameter. The root cause is lack of input validation on editid, enabling arbitrary SQL execution. Exploitation is desc...
CVE-2025-4027
CVE-2025-4027 affects PHPGurukul Old Age Home Management System 1.0. The vulnerability is a SQL injection in an unknown function of /admin/rules.php caused by manipulation of the pagetitle argument. It can be exploited remotely, and the exploit has been disclosed publicly. The primary sources des...
CVE-2025-3350
A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0. Affected is an unknown function of the file /admin/view-enquiry.php. The manipulation of the argument viewid leads to sql injection. It is possible to launch the attack remotely. The...