Shodan
Vulnerabilities
Vulnerable Software
Phpgurukul:  >> Zoo Management System  >> 1.0  Security Vulnerabilities
CVE-2024-25350
SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-02-28
CVE-2024-25351
SQL Injection vulnerability in /zms/admin/changeimage.php in PHPGurukul Zoo Management System 1.0 allows attackers to run arbitrary SQL commands via the editid parameter.
CVSS Score
3.8
EPSS Score
0.001
Published
2024-02-28
CVE-2023-41614
A stored cross-site scripting (XSS) vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-09-21
CVE-2023-41615
Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-09-08
CVE-2022-40924
Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_animal" file of the "Animals" module in the background management system.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-26
CVE-2022-40925
Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_event" file of the "Events" module in the background management system.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-26
CVE-2022-40932
In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-22
CVE-2022-33075
A stored cross-site scripting (XSS) vulnerability in the Add Classification function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via unspecified vectors.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-07-05
CVE-2022-31897
SourceCodester Zoo Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via public_html/register_visitor?msg=.
CVSS Score
6.1
EPSS Score
0.011
Published
2022-06-29
CVE-2022-31914
Zoo Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via zms/admin/public_html/save_animal?an_id=24.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved