3 matches found
CVE-2023-33580
Phpgurukul Student Study Center Management System V1.0 is affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Admin Name field on the Admin Profile page. The root cause is inadequate input sanitization/validation for the Admin Name, allowing injected JavaScript to be stored and e...
CVE-2025-5232
PHPGurukul Student Study Center Management System 1.0 has a SQL injection in /admin/report.php caused by improper handling of fromdate/todate parameters. The vulnerability is exploitable remotely and has been publicly disclosed; exploitation details are present across multiple sources. Root cause...
CVE-2022-47102
CVE-2022-47102 describes a cross-site scripting (XSS) vulnerability in the Student Study Center Management System v1.0. An attacker can inject a crafted payload into the name parameter to execute arbitrary web scripts or HTML in the victim’s browser. The issue is documented with a CVSS v3.1 base ...