3 matches found
CVE-2025-45007
CVE-2025-45007 affects PHPGurukul Timetable Generator System v1.0, via the profile.php file. The vulnerability is a reflected Cross-Site Scripting (XSS) where the adminname parameter in a POST request can cause arbitrary JavaScript execution. Impact is consistent with a reflected XSS allowing scr...
CVE-2025-3168
CVE-2025-3168 affects PHPGurukul Time Table Generator System 1.0. The vulnerability is an SQL injection in an unknown function of /admin/edit-class.php triggered by manipulating the editid parameter. It is exploitable remotely over network, and the exploit has been disclosed publicly. Connected s...
CVE-2025-7941
The CVE-2025-7941 entry describes a cross-site scripting vulnerability in PHPGurukul Time Table Generator System 1.0, affecting the /admin/profile.php file via manipulation of the adminname parameter. The issue enables remote attacker-driven script execution and has publicly disclosed exploits. C...