PHPGurukul Bus Pass Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in PHPGurukul Bus Pass Management System.
By the Year
In 2026 there have been 0 vulnerabilities in PHPGurukul Bus Pass Management System. Last year, in 2025 Bus Pass Management System had 2 security vulnerabilities published. Right now, Bus Pass Management System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 2 | 6.35 |
| 2024 | 1 | 4.80 |
| 2023 | 0 | 0.00 |
| 2022 | 4 | 8.05 |
| 2021 | 2 | 6.45 |
It may take a day or so for new Bus Pass Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent PHPGurukul Bus Pass Management System Security Vulnerabilities
XSS in PHPGurukul Bus Pass Mgmt Sys 1.0 Profile Page (admin-profile.php)
CVE-2025-6288
5.4 - Medium
- June 20, 2025
A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross site scripting. The attack may be launched remotely.
XSS
SQLi via viewid in PHPGurukul Bus Pass Mgmt Sys 1.0 /view-pass-detail.php
CVE-2025-3146
7.3 - High
- April 03, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0. This affects an unknown part of the file /view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
XSS in Bus Pass Mgmt Sys 1.0 via fromdate/toDate params
CVE-2024-44798
4.8 - Medium
- September 13, 2024
phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting (XSS) in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters.
XSS
Bus Pass Mgmt Sys 1.0 SQLi in searchdata param
CVE-2022-35156
9.8 - Critical
- September 30, 2022
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php..
SQL Injection
Bus Pass Management System v1.0 Reflected XSS via searchdata
CVE-2022-35155
6.1 - Medium
- September 30, 2022
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the searchdata parameter.
XSS
Bus Pass Management System 1.0 SQLi via Admin Pages
CVE-2022-36198
9.8 - Critical
- August 22, 2022
Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and buspassms/admin/edit-pass-detail.php
SQL Injection
An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0
CVE-2022-29008
6.5 - Medium
- May 11, 2022
An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information.
Insecure Direct Object Reference / IDOR
In Bus Pass Management System v1.0
CVE-2021-44317
5.4 - Medium
- December 16, 2021
In Bus Pass Management System v1.0, parameters 'pagedes' and `About Us` are affected with a Stored Cross-site scripting vulnerability.
XSS
In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which
CVE-2021-44315
7.5 - High
- December 16, 2021
In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the application, for example: Any file which contains sensitive information of the user or server.
Files or Directories Accessible to External Parties
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for PHPGurukul Bus Pass Management System or by PHPGurukul? Click the Watch button to subscribe.
