Vulnerabilities (CVE)

Filtered by vendor Phpgurukul Subscribe
Total 1062 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-46241 1 Phpgurukul 1 Dairy Farm Shop Management System 2026-06-17 N/A 5.9 MEDIUM
PHPGurukul Dairy Farm Shop Management System v1.1 is vulnerable to Cross-Site Scripting (XSS) via the pname parameter in add_product.php and edit_product.php.
CVE-2024-46239 1 Phpgurukul 1 Hospital Management System 2026-06-17 N/A 5.9 MEDIUM
Multiple cross-site scripting vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /doctor/edit-profile.php and adminremark parameter in /admin/query-details.php.
CVE-2024-46238 1 Phpgurukul 1 Hospital Management System 2026-06-17 N/A 5.9 MEDIUM
Multiple Cross Site Scripting (XSS) vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php
CVE-2024-46237 1 Phpgurukul 1 Hospital Management System 2026-06-17 N/A 5.4 MEDIUM
PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) via the patname, pataddress, and medhis parameters in doctor/add-patient.php and doctor/edit-patient.php.
CVE-2024-44664 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the name, summary, review, quality, price, and value parameters in product-details.php.
CVE-2024-44663 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the product parameter in search-result.php.
CVE-2024-44662 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the username parameter in the admin page.
CVE-2024-44661 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 5.4 MEDIUM
PHPGurukul Online Shopping Portal 2.0 is vulnerable to Cross Site Scripting (XSS) via the quantity parameter in my-cart.php.
CVE-2024-44660 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the fullname, emailid, and contactno parameters in login.php.
CVE-2024-44659 1 Phpgurukul 1 Online Shopping Portal 2026-06-17 N/A 9.8 CRITICAL
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the email parameter in forgot-password.php.
CVE-2024-44658 1 Phpgurukul 1 Complaint Management System 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the subcategory and category parameters in subcategory.php.
CVE-2024-44657 1 Phpgurukul 1 Complaint Management System 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the fromdate and todate parameters in between-date-userreport.php.
CVE-2024-44655 1 Phpgurukul 1 Complaint Management System 2026-06-17 N/A 6.1 MEDIUM
PHPGurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting (XSS) via the search parameter in user-search.php.
CVE-2024-44654 1 Phpgurukul 1 Complaint Management System 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the email and mobileno parameters in reset-password.php.
CVE-2024-44648 1 Phpgurukul 1 Small Crm 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via id and adminremark parameters in quote-details.php.
CVE-2024-44647 1 Phpgurukul 1 Small Crm 2026-06-17 N/A 6.1 MEDIUM
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting (XSS) via the aremark parameter in manage-tickets.php.
CVE-2024-44644 1 Phpgurukul 1 Small Crm 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the frm_id and aremark parameters in manage-tickets.php.
CVE-2024-44641 1 Phpgurukul 1 Small Crm 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php.
CVE-2024-44640 1 Phpgurukul 1 Student Record System 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php.
CVE-2024-44639 1 Phpgurukul 1 Student Record System 2026-06-17 N/A 6.5 MEDIUM
PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the sub1, sub2, sub3, sub4, and course-short parameters in add-subject.php.