Phpgurukul

News Portal Project

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1

CVE-2025-69990

Exploit
  • EPSS 0.12%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:21

phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file.php. The parameter file can cause any file to be deleted.

9.8

CVE-2025-69991

Exploit
  • EPSS 0.05%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:13

phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in check_availablity.php.

9.8

CVE-2025-69992

Exploit
  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 00:00:00
  • Zuletzt bearbeitet 16.01.2026 18:23:02

phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication.

9.8

CVE-2025-5370

Exploit
  • EPSS 0.07%
  • Veröffentlicht 31.05.2025 05:31:05
  • Zuletzt bearbeitet 09.06.2025 18:59:58

A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. Affected by this vulnerability is an unknown functionality of the file /admin/forgot-password.php. The manipulation of the argument Username leads to sql injection. The a...

9.8

CVE-2025-5252

Exploit
  • EPSS 0.06%
  • Veröffentlicht 27.05.2025 17:31:05
  • Zuletzt bearbeitet 09.06.2025 18:51:06

A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-subadmin.php. The manipulation of the argument emailid leads to sql injection. The atta...

9.8

CVE-2025-5251

Exploit
  • EPSS 0.07%
  • Veröffentlicht 27.05.2025 17:00:16
  • Zuletzt bearbeitet 10.06.2025 15:12:43

A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument Category leads to sql injection. It is possibl...

9.8

CVE-2025-5250

Exploit
  • EPSS 0.07%
  • Veröffentlicht 27.05.2025 17:00:13
  • Zuletzt bearbeitet 10.06.2025 15:12:33

A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-category.php. The manipulation of the argument Category leads to sql injection. T...

9.8

CVE-2025-5249

Exploit
  • EPSS 0.07%
  • Veröffentlicht 27.05.2025 16:31:05
  • Zuletzt bearbeitet 24.06.2025 15:55:43

A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-category.php. The manipulation of the argument Category leads to sql in...

9.8

CVE-2025-4874

Exploit
  • EPSS 0.1%
  • Veröffentlicht 18.05.2025 12:00:10
  • Zuletzt bearbeitet 21.05.2025 17:33:50

A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/contactus.php. The manipulation of the argument pagetitle leads to sql injection. The ...

8.8

CVE-2024-3767

Exploit
  • EPSS 0.08%
  • Veröffentlicht 15.04.2024 04:15:15
  • Zuletzt bearbeitet 27.09.2025 00:34:18

A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. This vulnerability affects unknown code of the file /admin/edit-post.php. The manipulation of the argument posttitle/category leads to sql injection. The attack can be in...