PHPGurukul Art Gallery Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in PHPGurukul Art Gallery Management System.
By the Year
In 2026 there have been 0 vulnerabilities in PHPGurukul Art Gallery Management System. Last year, in 2025 Art Gallery Management System had 26 security vulnerabilities published. Right now, Art Gallery Management System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 26 | 8.94 |
| 2024 | 1 | 6.50 |
| 2023 | 9 | 8.41 |
It may take a day or so for new Art Gallery Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent PHPGurukul Art Gallery Management System Security Vulnerabilities
PHPGurukul Art Gallery MS 1.1 XSS /admin/edit-art-medium-detail.php
CVE-2025-7767
5.4 - Medium
- July 18, 2025
A vulnerability, which was classified as problematic, has been found in PHPGurukul Art Gallery Management System 1.1. Affected by this issue is some unknown functionality of the file /admin/edit-art-medium-detail.php. The manipulation of the argument artmed leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
XSS
Critical SQLi in PHPGurukul Art Gallery Mgmt 1.1 via /admin/changeimage4.php (editid)
CVE-2025-6416
8.8 - High
- June 21, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /admin/changeimage4.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi in PHPGurukul Art Gallery Mgmt Sys 1.1 /admin/add-artist.php
CVE-2025-6417
8.8 - High
- June 21, 2025
A vulnerability has been found in PHPGurukul Art Gallery Management System 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-artist.php. The manipulation of the argument awarddetails leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgt Sys 1.1: Remote SQLi via /admin/changeimage2.php
CVE-2025-6414
8.8 - High
- June 21, 2025
A vulnerability classified as critical was found in PHPGurukul Art Gallery Management System 1.1. This vulnerability affects unknown code of the file /admin/changeimage2.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgt Sys 1.1 SQLi via /admin/changeimage3 Critical
CVE-2025-6415
8.8 - High
- June 21, 2025
A vulnerability, which was classified as critical, has been found in PHPGurukul Art Gallery Management System 1.1. This issue affects some unknown processing of the file /admin/changeimage3.php. The manipulation of the argument editid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Art Gallery 1.1 via /admin/changeimage.php
CVE-2025-6412
8.8 - High
- June 21, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/changeimage.php. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi in PHPGurukul Art Gallery 1.1 via editid in changeimage1.php
CVE-2025-6413
8.8 - High
- June 21, 2025
A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1. This affects an unknown part of the file /admin/changeimage1.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul AMS 1.1 SQLi via /admin/edit-art-medium-detail.php editid
CVE-2025-6410
8.8 - High
- June 21, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been classified as critical. Affected is an unknown function of the file /admin/edit-art-medium-detail.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Art Gallery Mgmt 1.1 admin/changepropic.php
CVE-2025-6411
8.8 - High
- June 21, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/changepropic.php. The manipulation of the argument imageid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul 1.1 /admin/forgot-password
CVE-2025-6409
9.8 - Critical
- June 21, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1 and classified as critical. This issue affects some unknown processing of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi Vulnerability in PHPGurukul Art Gallery MS 1.1 /admin/add-art-type.php
CVE-2025-4309
9.8 - Critical
- May 06, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-art-type.php. The manipulation of the argument arttype leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi in PHPGurukul Art Gallery Mgt Sys v1.1 via /admin/add-art-type.php
CVE-2025-4308
9.8 - Critical
- May 06, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-art-type.php. The manipulation of the argument arttype leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Management System 1.1 Remote SQLi CVE-2025-4307
CVE-2025-4307
9.8 - Critical
- May 06, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been classified as critical. Affected is an unknown function of the file /admin/add-art-medium.php. The manipulation of the argument artmed leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Art Gallery Mgmt Sys 1.0 /admin/manage-art-medium.php
CVE-2025-4014
9.8 - Critical
- April 28, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/manage-art-medium.php. The manipulation of the argument artmed leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi via pagetitle in PHPGurukul ArtGallery MS 1.0's /admin/aboutus.php (remote)
CVE-2025-4013
9.8 - Critical
- April 28, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in PHPGurukul Art Gallery Management System 1.0 (viewid)
CVE-2025-2648
9.8 - Critical
- March 23, 2025
A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.0. This affects an unknown part of the file /admin/view-enquiry-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery 1.0 - SQLi in /search.php
CVE-2025-2647
9.8 - Critical
- March 23, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search.php. The manipulation of the argument Search leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgmt Sys 1.0 Admin-Profile SQLi
CVE-2025-2646
9.8 - Critical
- March 23, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
SQL Injection
PHPGurukul Art Gallery Mgmt 1.0 XSS via artname in product.php
CVE-2025-2645
6.1 - Medium
- March 23, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /product.php. The manipulation of the argument artname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
XSS
PHPGurukul Art Gallery Mgmt 1.0 - Remote SQLi in edit-art-type-detail.php
CVE-2025-2643
9.8 - Critical
- March 23, 2025
A vulnerability has been found in PHPGurukul Art Gallery Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-art-type-detail.php?editid=1. The manipulation of the argument arttype leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgmt 1.0 SQLi via add-art-product.php
CVE-2025-2644
9.8 - Critical
- March 23, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/add-art-product.php. The manipulation of the argument arttype leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgt Sys 1.0 SQLi on admin/edit-art-product-detail.php
CVE-2025-2642
9.8 - Critical
- March 23, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.0. This affects an unknown part of the file /admin/edit-art-product-detail.php?editid=2. The manipulation of the argument editide/sprice/description leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Art Gallery Mgmt System 1.0 SQLi via edit-artist-detail.php
CVE-2025-2641
9.8 - Critical
- March 23, 2025
A vulnerability, which was classified as critical, has been found in PHPGurukul Art Gallery Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/edit-artist-detail.php?editid=1. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi via art-enquiry.php in PHPGurukul AGMS 1.1
CVE-2025-2628
9.8 - Critical
- March 22, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /art-enquiry.php. The manipulation of the argument eid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Art Gallery Mgmt Sys 1.0 via /admin/contactus.php
CVE-2025-2627
9.8 - Critical
- March 22, 2025
A vulnerability, which was classified as critical, has been found in PHPGurukul Art Gallery Management System 1.0. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument pagetitle leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
CVE-2025-2047: XSS in PHPGurukul AGMS 1.0 /search.php
CVE-2025-2047
3.5 - Low
- March 06, 2025
A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /search.php. The manipulation of the argument search leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
XSS
PHPGurukul ART Gallery Mgt v1.1 SQLi via Update Artist Image: imageid
CVE-2023-51978
6.5 - Medium
- January 12, 2024
In PHPGurukul Art Gallery Management System v1.1, "Update Artist Image" functionality of "imageid" parameter is vulnerable to SQL Injection.
SQL Injection
Art Gallery Mgmt Sys v1.0 SQLi via cid param in product.php
CVE-2023-37771
9.8 - Critical
- July 31, 2023
Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php.
SQL Injection
Art Gallery Management Sys v1.0 SQLi via viewid on Enquiry Page
CVE-2023-24726
9.8 - Critical
- March 15, 2023
Art Gallery Management System v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter on the enquiry page.
SQL Injection
Art Gallery Management System 1.0 SQLi via admin login
CVE-2023-23155
9.8 - Critical
- February 27, 2023
Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the username parameter in the Admin Login.
SQL Injection
Art Gallery Management System 1.0 SQLi via pid in single-product page
CVE-2023-23156
9.8 - Critical
- February 27, 2023
Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the pid parameter in the single-product page.
SQL Injection
Art Gallery Management System v1.0 Stored XSS via fullname param
CVE-2023-23157
5.4 - Medium
- February 27, 2023
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullname parameter on the enquiry page.
XSS
Art Gallery Management System Project v1.0 Stored XSS in Enquiry Page
CVE-2023-23158
5.4 - Medium
- February 27, 2023
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the message parameter on the enquiry page.
XSS
Reflected XSS in Art Gallery Management System v1.0
CVE-2023-23161
6.1 - Medium
- February 10, 2023
A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
XSS
SQLi in Art Gallery Mgmt Sys v1.0 via cid in product.php
CVE-2023-23162
9.8 - Critical
- February 10, 2023
Art Gallery Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the cid parameter at product.php.
SQL Injection
SQLi in Art Gallery Management System v1.0 via editid
CVE-2023-23163
9.8 - Critical
- February 10, 2023
Art Gallery Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for PHPGurukul Art Gallery Management System or by PHPGurukul? Click the Watch button to subscribe.
