Shodan
Vulnerabilities
Vulnerable Software
Phpgurukul:  >> Art Gallery Management System  Security Vulnerabilities
CVE-2025-2047
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /search.php. The manipulation of the argument search leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
3.5
EPSS Score
0.0
Published
2025-03-06
CVE-2023-51978
In PHPGurukul Art Gallery Management System v1.1, "Update Artist Image" functionality of "imageid" parameter is vulnerable to SQL Injection.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-01-12
CVE-2023-37771
Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php.
CVSS Score
9.8
EPSS Score
0.048
Published
2023-07-31
CVE-2023-24726
Art Gallery Management System v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter on the enquiry page.
CVSS Score
9.8
EPSS Score
0.006
Published
2023-03-15
CVE-2023-23155
Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the username parameter in the Admin Login.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-02-27
CVE-2023-23156
Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the pid parameter in the single-product page.
CVSS Score
9.8
EPSS Score
0.009
Published
2023-02-27
CVE-2023-23157
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullname parameter on the enquiry page.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-27
CVE-2023-23158
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the message parameter on the enquiry page.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-27
CVE-2023-23161
A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
CVSS Score
6.1
EPSS Score
0.069
Published
2023-02-10
CVE-2023-23162
Art Gallery Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the cid parameter at product.php.
CVSS Score
9.8
EPSS Score
0.005
Published
2023-02-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved