CVE-2024-5063

A vulnerability was found in PHPGurukul Online Course Registration System 3.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-264922 is the identifier assigned to this vulnerability.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpgurukul:online_course_registration_system:3.1:*:*:*:*:*:*:*

History

17 Jun 2026, 08:15

Type Values Removed Values Added
CPE cpe:2.3:a:phpgurukul:online_course_registration_system:3.1:*:*:*:*:*:*:*
First Time Phpgurukul
Phpgurukul online Course Registration System
References () https://github.com/BurakSevben/CVEs/blob/main/Online%20Course%20Registration%20System/Online%20Course%20Registration%20System%20-%20Authentication%20Bypass.md - () https://github.com/BurakSevben/CVEs/blob/main/Online%20Course%20Registration%20System/Online%20Course%20Registration%20System%20-%20Authentication%20Bypass.md - Exploit, Third Party Advisory
References () https://vuldb.com/?ctiid.264922 - () https://vuldb.com/?ctiid.264922 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.264922 - () https://vuldb.com/?id.264922 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.336236 - () https://vuldb.com/?submit.336236 - Third Party Advisory, VDB Entry

21 Nov 2024, 09:46

Type Values Removed Values Added
References () https://github.com/BurakSevben/CVEs/blob/main/Online%20Course%20Registration%20System/Online%20Course%20Registration%20System%20-%20Authentication%20Bypass.md - () https://github.com/BurakSevben/CVEs/blob/main/Online%20Course%20Registration%20System/Online%20Course%20Registration%20System%20-%20Authentication%20Bypass.md -
References () https://vuldb.com/?ctiid.264922 - () https://vuldb.com/?ctiid.264922 -
References () https://vuldb.com/?id.264922 - () https://vuldb.com/?id.264922 -
References () https://vuldb.com/?submit.336236 - () https://vuldb.com/?submit.336236 -

04 Jun 2024, 19:20

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en PHPGurukul Online Course Registration System 3.1. Ha sido declarada crítica. Esta vulnerabilidad afecta a un código desconocido del archivo /admin/index.php. La manipulación del argumento username/password conduce a la inyección de SQL. El ataque se puede iniciar de forma remota. El exploit ha sido divulgado al público y puede utilizarse. VDB-264922 es el identificador asignado a esta vulnerabilidad.

17 May 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-17 19:15

Updated : 2026-06-17 08:15


NVD link : CVE-2024-5063

Mitre link : CVE-2024-5063

CVE.ORG link : CVE-2024-5063


JSON object : View

Products Affected

phpgurukul

  • online_course_registration_system
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')