Phpgurukul Phpgurukul

  1. Vendors
  2. Phpgurukul

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Phpgurukul product.

RSS Feeds for Phpgurukul security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Phpgurukul products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Phpgurukul Sorted by Most Security Vulnerabilities since 2018

Phpgurukul Hospital Management System53 vulnerabilities

Phpgurukul Art Gallery Management System35 vulnerabilities

Phpgurukul Zoo Management System28 vulnerabilities

Phpgurukul Land Record System24 vulnerabilities

Phpgurukul Pre School Enrollment System24 vulnerabilities

Phpgurukul Online Shopping Portal21 vulnerabilities

Phpgurukul Nipah Virus Testing Management System20 vulnerabilities

Phpgurukul Covid19 Testing Management System19 vulnerabilities

Phpgurukul Old Age Home Management System19 vulnerabilities

Phpgurukul Complaint Management System19 vulnerabilities

Phpgurukul Dairy Farm Shop Management System18 vulnerabilities

Phpgurukul Park Ticketing Management System18 vulnerabilities

Phpgurukul Employee Record Management System18 vulnerabilities

Phpgurukul User Registration Login User Management System18 vulnerabilities

Phpgurukul Restaurant Table Booking System17 vulnerabilities

Phpgurukul Boat Booking System17 vulnerabilities

Phpgurukul Men Salon Management System17 vulnerabilities

Phpgurukul Emergency Ambulance Hiring Portal17 vulnerabilities

Phpgurukul Online Nurse Hiring System17 vulnerabilities

Phpgurukul Bank Locker Management System15 vulnerabilities

Phpgurukul Directory Management System15 vulnerabilities

Phpgurukul Rail Pass Management System15 vulnerabilities

Phpgurukul Online Fire Reporting System14 vulnerabilities

Phpgurukul Maid Hiring Management System14 vulnerabilities

Phpgurukul E Diary Management System13 vulnerabilities

Phpgurukul Cyber Cafe Management System13 vulnerabilities

Phpgurukul Daily Expense Tracker System12 vulnerabilities

Phpgurukul Online Birth Certificate System12 vulnerabilities

Phpgurukul Hostel Management System12 vulnerabilities

Phpgurukul Apartment Visitors Management System12 vulnerabilities

Phpgurukul Job Portal12 vulnerabilities

Phpgurukul Student Record System11 vulnerabilities

Phpgurukul Vehicle Parking Management System11 vulnerabilities

Phpgurukul Medical Card Generation System11 vulnerabilities

Phpgurukul Teacher Subject Allocation Management System10 vulnerabilities

Phpgurukul Beauty Parlour Management System10 vulnerabilities

Phpgurukul Doctor Appointment Management System10 vulnerabilities

Phpgurukul Company Visitor Management System9 vulnerabilities

Phpgurukul Small Crm9 vulnerabilities

Phpgurukul Online Dj Booking Management System8 vulnerabilities

Phpgurukul Human Metapneumovirus Testing Management System8 vulnerabilities

Phpgurukul Client Management System8 vulnerabilities

Phpgurukul Online Marriage Registration System7 vulnerabilities

Phpgurukul Curfew E Pass Management System7 vulnerabilities

Phpgurukul Autotaxi Stand Management System7 vulnerabilities

Phpgurukul Bus Pass Management System7 vulnerabilities

Phpgurukul News Portal Project7 vulnerabilities

Phpgurukul Bp Monitoring Management System7 vulnerabilities

Phpgurukul Student Result Management System6 vulnerabilities

Phpgurukul Teachers Record Management System6 vulnerabilities

Phpgurukul Online Security Guards Hiring System6 vulnerabilities

Phpgurukul Tourism Management System6 vulnerabilities

Phpgurukul Online Notes Sharing System6 vulnerabilities

Phpgurukul Blood Bank Donor Management System6 vulnerabilities

Phpgurukul Online Course Registration6 vulnerabilities

Phpgurukul News Portal5 vulnerabilities

Phpgurukul Car Rental Portal5 vulnerabilities

Phpgurukul Online Banquet Booking System5 vulnerabilities

Phpgurukul Ifsc Code Finder4 vulnerabilities

Phpgurukul Online Course Registration System4 vulnerabilities

Phpgurukul Notice Board System4 vulnerabilities

Phpgurukul Local Services Search Engine Management System3 vulnerabilities

Phpgurukul Vehicle Record System3 vulnerabilities

Phpgurukul Student Study Center Management System3 vulnerabilities

Phpgurukul Employee Management System3 vulnerabilities

Phpgurukul Student Management System2 vulnerabilities

Phpgurukul Time Table Generator System2 vulnerabilities

Phpgurukul Human Metapneumovirus2 vulnerabilities

Phpgurukul Online Notes Sharing Management System2 vulnerabilities

Phpgurukul Credit Card Application Management System2 vulnerabilities

Phpgurukul Online Book Store1 vulnerability

Phpgurukul Student Project Allocation System1 vulnerability

Phpgurukul Covid 19 Testing Management System1 vulnerability

Phpgurukul Teacher Subject Allocation System1 vulnerability

Phpgurukul Online Shopping Portal Project1 vulnerability

Phpgurukul Online Railway Catering System1 vulnerability

Phpgurukul Medical Card System1 vulnerability

Phpgurukul User Management System1 vulnerability

Phpgurukul Online Railway Catering Management System1 vulnerability

Phpgurukul Blood Donor Management System1 vulnerability

Phpgurukul Elearning System1 vulnerability

Phpgurukul Online Library Management System1 vulnerability

By the Year

In 2025 there have been 405 vulnerabilities in Phpgurukul with an average score of 9.1 out of ten. Last year, in 2024 Phpgurukul had 212 security vulnerabilities published. That is, 193 more vulnerabilities have already been reported in 2025 as compared to last year. However, the average CVE base score of the vulnerabilities in 2025 is greater by 1.67.




Year Vulnerabilities Average Score
2025 405 9.15
2024 212 7.48
2023 104 7.03
2022 42 7.74
2021 43 7.40
2020 21 8.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Phpgurukul vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Phpgurukul Security Vulnerabilities

A vulnerability classified as critical was found in PHPGurukul Local Services Search Engine Management System 2.1

CVE-2025-6863 9.8 - Critical - June 29, 2025

A vulnerability classified as critical was found in PHPGurukul Local Services Search Engine Management System 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/edit-category-detail.php. The manipulation of the argument editid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

PHPGurukul Pre-School Enrollment System Project v1.0 is vulnerable to Directory Traversal in manage-classes.php.

CVE-2025-50350 - June 26, 2025

PHPGurukul Pre-School Enrollment System Project v1.0 is vulnerable to Directory Traversal in manage-classes.php.

A SQL injection vulnerability was discovered in the PHPGurukul Dairy Farm Shop Management System 1.3

CVE-2025-51671 - June 26, 2025

A SQL injection vulnerability was discovered in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability allows remote attackers to execute arbitrary SQL code via the category and categorycode parameters in a POST request to the manage-categories.php file.

A time-based blind SQL injection vulnerability was identified in the PHPGurukul Dairy Farm Shop Management System 1.3

CVE-2025-51672 - June 26, 2025

A time-based blind SQL injection vulnerability was identified in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability exists in the manage-companies.php file and allows remote attackers to execute arbitrary SQL code via the companyname parameter in a POST request.

SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20

CVE-2024-27685 - June 25, 2025

SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20 allows a remote attacker to obtain sensitive information via a crafted payload to the $cshortname, $cfullname, and $cdate variables.

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Insecure Direct Object Reference (IDOR) in odms/request-details.php.

CVE-2025-50693 - June 24, 2025

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Insecure Direct Object Reference (IDOR) in odms/request-details.php.

Insecure Direct Object Reference / IDOR

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Cross Site Scripting (XSS) in /admin/view-booking-detail.php and /admin/invoice-generating.php.

CVE-2025-50695 - June 24, 2025

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Cross Site Scripting (XSS) in /admin/view-booking-detail.php and /admin/invoice-generating.php.

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-class-pic.php.

CVE-2025-50348 - June 23, 2025

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-class-pic.php.

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-teacher-pic.php.

CVE-2025-50349 - June 23, 2025

PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-teacher-pic.php.

A vulnerability has been found in PHPGurukul Art Gallery Management System 1.1 and classified as critical

CVE-2025-6417 8.8 - High - June 21, 2025

A vulnerability has been found in PHPGurukul Art Gallery Management System 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-artist.php. The manipulation of the argument awarddetails leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6416 8.8 - High - June 21, 2025

A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /admin/changeimage4.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6415 8.8 - High - June 21, 2025

A vulnerability, which was classified as critical, has been found in PHPGurukul Art Gallery Management System 1.1. This issue affects some unknown processing of the file /admin/changeimage3.php. The manipulation of the argument editid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical was found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6414 8.8 - High - June 21, 2025

A vulnerability classified as critical was found in PHPGurukul Art Gallery Management System 1.1. This vulnerability affects unknown code of the file /admin/changeimage2.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6413 8.8 - High - June 21, 2025

A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1. This affects an unknown part of the file /admin/changeimage1.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6412 8.8 - High - June 21, 2025

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/changeimage.php. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6411 8.8 - High - June 21, 2025

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/changepropic.php. The manipulation of the argument imageid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1

CVE-2025-6410 8.8 - High - June 21, 2025

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been classified as critical. Affected is an unknown function of the file /admin/edit-art-medium-detail.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1 and classified as critical

CVE-2025-6409 9.8 - Critical - June 21, 2025

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1 and classified as critical. This issue affects some unknown processing of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, was found in PHPGurukul Directory Management System 2.0

CVE-2025-6333 8.8 - High - June 20, 2025

A vulnerability, which was classified as critical, was found in PHPGurukul Directory Management System 2.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Directory Management System 2.0

CVE-2025-6332 8.8 - High - June 20, 2025

A vulnerability, which was classified as critical, has been found in PHPGurukul Directory Management System 2.0. Affected by this issue is some unknown functionality of the file /admin/manage-directory.php. The manipulation of the argument del leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical has been found in PHPGurukul Directory Management System 1.0

CVE-2025-6330 9.8 - Critical - June 20, 2025

A vulnerability classified as critical has been found in PHPGurukul Directory Management System 1.0. Affected is an unknown function of the file /searchdata.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical was found in PHPGurukul Directory Management System 1.0

CVE-2025-6331 8.8 - High - June 20, 2025

A vulnerability classified as critical was found in PHPGurukul Directory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/search-directory.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical

CVE-2025-6322 9.8 - Critical - June 20, 2025

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /visit.php. The manipulation of the argument gname leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0

CVE-2025-6323 9.8 - Critical - June 20, 2025

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0. It has been classified as critical. This affects an unknown part of the file /enrollment.php. The manipulation of the argument fathername leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

SQL Injection

A vulnerability has been found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical

CVE-2025-6321 8.8 - High - June 20, 2025

A vulnerability has been found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-subadmin.php. The manipulation of the argument sadminusername leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, was found in PHPGurukul Pre-School Enrollment System 1.0

CVE-2025-6320 8.8 - High - June 20, 2025

A vulnerability, which was classified as critical, was found in PHPGurukul Pre-School Enrollment System 1.0. Affected is an unknown function of the file /admin/add-class.php. The manipulation of the argument classname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical was found in PHPGurukul Pre-School Enrollment System 1.0

CVE-2025-6318 9.8 - Critical - June 20, 2025

A vulnerability classified as critical was found in PHPGurukul Pre-School Enrollment System 1.0. This vulnerability affects unknown code of the file /admin/check_availability.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Pre-School Enrollment System 1.0

CVE-2025-6319 8.8 - High - June 20, 2025

A vulnerability, which was classified as critical, has been found in PHPGurukul Pre-School Enrollment System 1.0. This issue affects some unknown processing of the file /admin/add-teacher.php. The manipulation of the argument tsubject leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0

CVE-2025-6308 8.8 - High - June 20, 2025

A vulnerability classified as critical has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected is an unknown function of the file /admin/bwdates-request-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as critical was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0

CVE-2025-6309 8.8 - High - June 20, 2025

A vulnerability classified as critical was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add-ambulance.php. The manipulation of the argument ambregnum leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0

CVE-2025-6310 9.8 - Critical - June 20, 2025

A vulnerability, which was classified as critical, has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument Message leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

SQL Injection

A vulnerability classified as critical was found in PHPGurukul Employee Record Management System 1.3

CVE-2025-6300 9.8 - Critical - June 20, 2025

A vulnerability classified as critical was found in PHPGurukul Employee Record Management System 1.3. This vulnerability affects unknown code of the file /admin/editempeducation.php. The manipulation of the argument yopgra leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability classified as problematic was found in PHPGurukul COVID19 Testing Management System 1.0

CVE-2025-6287 5.4 - Medium - June 20, 2025

A vulnerability classified as problematic was found in PHPGurukul COVID19 Testing Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /test-details.php of the component Take Action. The manipulation of the argument remark leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability was found in PHPGurukul COVID19 Testing Management System 2021

CVE-2025-6285 6.1 - Medium - June 19, 2025

A vulnerability was found in PHPGurukul COVID19 Testing Management System 2021. It has been rated as problematic. This issue affects some unknown processing of the file /search-report-result.php. The manipulation of the argument q leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management System 2021

CVE-2025-6286 6.1 - Medium - June 19, 2025

A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management System 2021. Affected is an unknown function of the file /search-report-result.php. The manipulation of the argument q leads to open redirect. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Open Redirect

A vulnerability was found in PHPGurukul Car Rental Portal 3.0

CVE-2025-6284 4.3 - Medium - June 19, 2025

A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Session Riding

A vulnerability was found in PHPGurukul Hostel Management System 1.0

CVE-2025-6155 9.8 - Critical - June 17, 2025

A vulnerability was found in PHPGurukul Hostel Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /includes/login-hm.inc.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0

CVE-2025-6157 9.8 - Critical - June 17, 2025

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /registered-user-testing.php. The manipulation of the argument testtype leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0

CVE-2025-6156 8.8 - High - June 17, 2025

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /bwdates-report-ds.php. The manipulation of the argument testtype leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Hostel Management System 1.0 and classified as critical

CVE-2025-6154 9.8 - Critical - June 17, 2025

A vulnerability was found in PHPGurukul Hostel Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /includes/login.inc.php. The manipulation of the argument student_roll_no leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability has been found in PHPGurukul Hostel Management System 1.0 and classified as critical

CVE-2025-6153 9.8 - Critical - June 17, 2025

A vulnerability has been found in PHPGurukul Hostel Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/students.php. The manipulation of the argument search_box leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0

CVE-2025-6127 5.4 - Medium - June 16, 2025

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search-report.php. The manipulation of the argument serachdata leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0

CVE-2025-6126 5.4 - Medium - June 16, 2025

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /contact.php. The manipulation of the argument Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

XSS

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0

CVE-2025-6125 5.4 - Medium - June 16, 2025

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/aboutus.php. The manipulation of the argument pagedes leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability has been found in PHPGurukul Rail Pass Management System 1.0 and classified as problematic

CVE-2025-5976 5.4 - Medium - June 10, 2025

A vulnerability has been found in PHPGurukul Rail Pass Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/add-pass.php. The manipulation of the argument fullname leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

XSS

A vulnerability, which was classified as problematic, was found in PHPGurukul Rail Pass Management System 1.0

CVE-2025-5975 6.1 - Medium - June 10, 2025

A vulnerability, which was classified as problematic, was found in PHPGurukul Rail Pass Management System 1.0. This affects an unknown part of the file /rpms/download-pass.php. The manipulation of the argument searchdata leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability, which was classified as problematic, has been found in PHPGurukul Restaurant Table Booking System 1.0

CVE-2025-5974 5.4 - Medium - June 10, 2025

A vulnerability, which was classified as problematic, has been found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this issue is some unknown functionality of the file /check-status.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0

CVE-2025-5972 5.4 - Medium - June 10, 2025

A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0. Affected is an unknown function of the file /admin/manage-subadmins.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

XSS

A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0

CVE-2025-5973 5.4 - Medium - June 10, 2025

A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add-table.php. The manipulation of the argument tableno leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

XSS

A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as problematic

CVE-2025-5970 5.4 - Medium - June 10, 2025

A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/add-subadmin.php. The manipulation of the argument fullname leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

XSS

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.