PHPGurukul Bank Locker Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in PHPGurukul Bank Locker Management System.
By the Year
In 2026 there have been 0 vulnerabilities in PHPGurukul Bank Locker Management System. Last year, in 2025 Bank Locker Management System had 13 security vulnerabilities published. Right now, Bank Locker Management System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 13 | 9.49 |
| 2024 | 0 | 0.00 |
| 2023 | 4 | 8.38 |
It may take a day or so for new Bank Locker Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent PHPGurukul Bank Locker Management System Security Vulnerabilities
Bank Locker Management System: XSS via /search param
CVE-2025-61255
6.1 - Medium
- October 21, 2025
Bank Locker Management System by PHPGurukul is affected by a Cross-Site Scripting (XSS) vulnerability via the /search parameter, where unsanitized input allows arbitrary HTML and JavaScript injection, potentially resulting in information disclosure and user redirection.
XSS
Session Hijacking via Improper Session Invalidation in PHPGurukul Bank Locker
CVE-2025-50491
- July 28, 2025
Improper session invalidation in the component /banker/change-password.php of PHPGurukul Bank Locker Management System v1 allows attackers to execute a session hijacking attack.
CVE-2025-2684: PHPGurukul BLM 1.0 – SQLi in search-report-details.php Remote
CVE-2025-2684
9.8 - Critical
- March 24, 2025
A vulnerability, which was classified as critical, has been found in PHPGurukul Bank Locker Management System 1.0. This issue affects some unknown processing of the file /search-report-details.php. The manipulation of the argument searchinput leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Bank Locker Mgt 1.0 /profile.php via mobilenumber
CVE-2025-2683
9.8 - Critical
- March 24, 2025
A vulnerability classified as critical was found in PHPGurukul Bank Locker Management System 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Bank Locker 1.0 – Remote SQLi via mobilenumber in /edit-subadmin.php
CVE-2025-2682
9.8 - Critical
- March 24, 2025
A vulnerability classified as critical has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file /edit-subadmin.php?said=3. The manipulation of the argument mobilenumber leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Bank Locker Mgmt Sys 1.0 SQLi via lockersize
CVE-2025-2681
9.8 - Critical
- March 24, 2025
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /edit-locker.php?ltid=6. The manipulation of the argument lockersize leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Bank Locker Mgt Sys 1.0 SQLi via /edit-assign-locker.php
CVE-2025-2680
9.8 - Critical
- March 24, 2025
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edit-assign-locker.php?ltid=1. The manipulation of the argument mobilenumber leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Locker System 1.0 SQLi /contact-us.php pagetitle
CVE-2025-2679
9.8 - Critical
- March 24, 2025
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /contact-us.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi via /changeimage1.php editID in PHPGurukul Bank Locker Mgt System 1.0
CVE-2025-2678
9.8 - Critical
- March 24, 2025
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /changeimage1.php. The manipulation of the argument editid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi in PHPGurukul Bank Locker Mgt 1.0 /changeidproof.php editid
CVE-2025-2677
9.8 - Critical
- March 24, 2025
A vulnerability has been found in PHPGurukul Bank Locker Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /changeidproof.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Bank Locker Mgmt 1.0 /add-subadmin.php
CVE-2025-2676
9.8 - Critical
- March 24, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file /add-subadmin.php. The manipulation of the argument sadminusername leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in PHPGurukul Bank Locker Management 1.0 /aboutus.php pagetitle
CVE-2025-2674
9.8 - Critical
- March 24, 2025
A vulnerability classified as critical was found in PHPGurukul Bank Locker Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /aboutus.php. The manipulation of the argument pagetitle leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
PHPGurukul Locker Mgmt 1.0: SQLi in /search-locker-details.php
CVE-2025-2663
9.8 - Critical
- March 23, 2025
A vulnerability has been found in PHPGurukul Bank Locker Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /search-locker-details.php. The manipulation of the argument searchinput leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQLi in PHPGurukul BLS 1.0 Recovery.php Password Reset
CVE-2023-1964
9.1 - Critical
- April 09, 2023
A vulnerability classified as critical has been found in PHPGurukul Bank Locker Management System 1.0. Affected is an unknown function of the file recovery.php of the component Password Reset. The manipulation of the argument uname/mobile leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225360.
SQL Injection
SQLi in PHPGurukul Bank Locker Mgt Sys 1.0 Search Comp
CVE-2023-1963
9.8 - Critical
- April 09, 2023
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php of the component Search. The manipulation of the argument searchinput leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-225359.
SQL Injection
SQL injection via username in PHPGurukul Bank Locker System 1.0 Login
CVE-2023-0562
9.8 - Critical
- January 28, 2023
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-219716.
SQL Injection
PHPGurukul Bank Locker MS 1.0 Assign Locker XSS via ahname
CVE-2023-0563
4.8 - Medium
- January 28, 2023
A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. The manipulation of the argument ahname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-219717 was assigned to this vulnerability.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for PHPGurukul Bank Locker Management System or by PHPGurukul? Click the Watch button to subscribe.
