Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-46176
Hardcoded credentials in the Telnet service in D-Link DIR-605L v2.13B01 and DIR-816L v2.06B01 allow attackers to remotely execute arbitrary commands via firmware analysis.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51102
PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/login.php via the username and password parameters.
CVSS Score
4.4
EPSS Score
0.0
Published
2025-05-23
CVE-2024-48704
Phpgurukul Medical Card Generation System v1.0 is vulnerable to HTML Injection in admin/contactus.php via the parameter pagedes.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51099
A reflected cross-site scripting (XSS) vulnerability in the component mcgs/download-medical-cards.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the searchdata parameter.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51103
PHPGURUKUL Student Management System using PHP and MySQL v1 was discovered to contain multiple SQL injection vulnerabilities at /studentrecordms/password-recovery.php via the emailid and id parameters.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51101
PHPGURUKUL Restaurant Table Booking System using PHP and MySQL v1.0 was discovered to contain a SQL injection vulnerability via the searchdata parameter at /rtbs/check-status.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51107
Multiple stored cross-site scripting (XSS) vulnerabilities in the component /mcgs/admin/contactus.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the pagetitle, pagedes, and email parameters.
CVSS Score
4.8
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51108
Multiple stored cross-site scripting (XSS) vulnerabilities in the component /admin/card-bwdates-report.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the fromdate and todate parameters.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-05-23
CVE-2024-51360
An issue in Hospital Management System In PHP V4.0 allows a remote attacker to execute arbitrary code via the hms/doctor/edit-profile.php file
CVSS Score
9.8
EPSS Score
0.004
Published
2025-05-23
CVE-2024-48702
PHPGurukul Old Age Home Management System v1.0 is vulnerable to HTML Injection via the searchdata parameter.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-05-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved