Shodan
Vulnerabilities
Vulnerable Software
Phpgurukul:  Security Vulnerabilities
CVE-2023-31936
Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the viewid parameter of the view-pass-detail.php file.
CVSS Score
7.2
EPSS Score
0.009
Published
2023-07-28
CVE-2023-31937
Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file.
CVSS Score
7.2
EPSS Score
0.008
Published
2023-07-28
CVE-2023-36942
A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the website title field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-27
CVE-2023-36941
A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name, leader, and member fields.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-27
CVE-2023-37746
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter of the /admin/contactus.php component.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-13
CVE-2023-37743
A cross-site scripting (XSS) vulnerability in Teacher Subject Allocation System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search text box.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-13
CVE-2023-37744
Maid Hiring Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-booking-request.php.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-13
CVE-2023-37745
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Description of the /admin/aboutus.php component.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-07-13
CVE-2023-3605
A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Registration Page. The manipulation leads to improper restriction of excessive authentication attempts. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-233467.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-07-10
CVE-2023-36940
Cross Site Scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL v.1.2 allows attackers to execute arbitrary code via a crafted payload injected into the search field.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-07-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved