Phpgurukul

News Portal Project

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.7

CVE-2026-5840

Exploit
  • EPSS 0.03%
  • Veröffentlicht 09.04.2026 04:00:15
  • Zuletzt bearbeitet 13.04.2026 15:02:47

A security flaw has been discovered in PHPGurukul News Portal Project 4.1. Impacted is an unknown function of the file /admin/check_availability.php. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of ...

4.7

CVE-2026-5839

Exploit
  • EPSS 0.03%
  • Veröffentlicht 09.04.2026 03:45:14
  • Zuletzt bearbeitet 13.04.2026 15:02:47

A vulnerability was identified in PHPGurukul News Portal Project 4.1. This issue affects some unknown processing of the file /admin/add-subcategory.php. Such manipulation of the argument sucatdescription leads to sql injection. The attack may be laun...

4.7

CVE-2026-5838

Exploit
  • EPSS 0.03%
  • Veröffentlicht 09.04.2026 03:30:14
  • Zuletzt bearbeitet 13.04.2026 15:02:47

A vulnerability was determined in PHPGurukul News Portal Project 4.1. This vulnerability affects unknown code of the file /admin/add-subadmins.php. This manipulation of the argument sadminusername causes sql injection. The attack may be initiated rem...

7.3

CVE-2026-5837

Exploit
  • EPSS 0.03%
  • Veröffentlicht 09.04.2026 03:15:12
  • Zuletzt bearbeitet 13.04.2026 15:02:47

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been ...

9.1

CVE-2025-69990

Exploit
  • EPSS 0.12%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:21

phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file.php. The parameter file can cause any file to be deleted.

9.8

CVE-2025-69991

Exploit
  • EPSS 0.05%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:13

phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in check_availablity.php.

9.8

CVE-2025-69992

Exploit
  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:02

phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication.

9.8

CVE-2025-5370

Exploit
  • EPSS 0.2%
  • Veröffentlicht 31.05.2025 05:31:05
  • Zuletzt bearbeitet 09.06.2025 18:59:58

A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. Affected by this vulnerability is an unknown functionality of the file /admin/forgot-password.php. The manipulation of the argument Username leads to sql injection. The a...

9.8

CVE-2025-5252

Exploit
  • EPSS 0.19%
  • Veröffentlicht 27.05.2025 17:31:05
  • Zuletzt bearbeitet 09.06.2025 18:51:06

A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-subadmin.php. The manipulation of the argument emailid leads to sql injection. The atta...

9.8

CVE-2025-5251

Exploit
  • EPSS 0.2%
  • Veröffentlicht 27.05.2025 17:00:16
  • Zuletzt bearbeitet 10.06.2025 15:12:43

A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument Category leads to sql injection. It is possibl...