Shodan
Vulnerabilities
Vulnerable Software
Phpgurukul:  Security Vulnerabilities
CVE-2021-26304
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-01-29
CVE-2020-35745
PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get appointment history and access all session logs.
CVSS Score
8.8
EPSS Score
0.004
Published
2021-01-07
CVE-2020-35151
The Online Marriage Registration System 1.0 post parameter "searchdata" in the user/search.php request is vulnerable to Time Based Sql Injection.
CVSS Score
8.8
EPSS Score
0.003
Published
2020-12-21
CVE-2020-24723
Cross Site Scripting (XSS) vulnerability in the Registration page of the admin panel in PHPGurukul User Registration & Login and User Management System With admin panel 2.1.
CVSS Score
4.8
EPSS Score
0.004
Published
2020-11-18
CVE-2020-28136
An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.
CVSS Score
8.8
EPSS Score
0.024
Published
2020-11-17
CVE-2020-25952
SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System With admin panel 2.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication.
CVSS Score
9.8
EPSS Score
0.023
Published
2020-11-16
CVE-2020-25271
PHPGurukul hospital-management-system-in-php 4.0 allows XSS via admin/patient-search.php, doctor/search.php, book-appointment.php, doctor/appointment-history.php, or admin/appointment-history.php.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-10-08
CVE-2020-25270
PHPGurukul hostel-management-system 2.1 allows XSS via Guardian Name, Guardian Relation, Guardian Contact no, Address, or City.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-10-08
CVE-2020-25487
PHPGURUKUL Zoo Management System Using PHP and MySQL version 1.0 is affected by: SQL Injection via zms/animal-detail.php.
CVSS Score
7.8
EPSS Score
0.002
Published
2020-09-22
CVE-2020-23936
PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".
CVSS Score
9.8
EPSS Score
0.005
Published
2020-08-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved