Phpgurukul

Teachers Record Management System

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-8951

Exploit
  • EPSS 0.03%
  • Veröffentlicht 14.08.2025 08:15:25
  • Zuletzt bearbeitet 14.08.2025 17:36:24

A vulnerability has been found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/search.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack...

9.8

CVE-2025-6888

Exploit
  • EPSS 0.04%
  • Veröffentlicht 30.06.2025 05:15:41
  • Zuletzt bearbeitet 08.07.2025 14:16:55

A vulnerability was found in PHPGurukul Teachers Record Management System 2.1. It has been classified as critical. This affects an unknown part of the file /admin/changeimage.php. The manipulation of the argument tid leads to sql injection. It is pos...

9.8

CVE-2025-6885

Exploit
  • EPSS 0.04%
  • Veröffentlicht 30.06.2025 03:32:07
  • Zuletzt bearbeitet 08.07.2025 14:17:03

A vulnerability, which was classified as critical, was found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/edit-teacher-detail.php. The manipulation of the argument tid leads to sql injection....

9.1

CVE-2024-51063

Exploit
  • EPSS 0.12%
  • Veröffentlicht 31.10.2024 19:15:13
  • Zuletzt bearbeitet 31.03.2025 19:26:46

Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection in add-teacher.php via the mobile number or email parameter.

9.8

CVE-2024-51064

Exploit
  • EPSS 0.13%
  • Veröffentlicht 31.10.2024 19:15:13
  • Zuletzt bearbeitet 31.03.2025 19:29:12

Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection via the tid parameter to admin/queries.php.

6.1

CVE-2024-48744

Exploit
  • EPSS 0.49%
  • Veröffentlicht 16.10.2024 15:15:16
  • Zuletzt bearbeitet 31.03.2025 17:47:09

A Reflected Cross Site Scripting (XSS) vulnerability was found in /trms/listed- teachers.php in PHPGurukul Teachers Record Management System v2.1, which allows remote attackers to execute arbitrary code via "searchinput" POST request parameter.

8.8

CVE-2021-28423

Exploit
  • EPSS 1.72%
  • Veröffentlicht 01.07.2021 15:15:08
  • Zuletzt bearbeitet 28.05.2025 23:15:21

Multiple SQL Injection vulnerabilities in Teachers Record Management System 1.0 thru 2.1 allow remote authenticated users to execute arbitrary SQL commands via the 'editid' GET parameter in edit-subjects-detail.php, edit-teacher-detail.php, or the 's...

5.4

CVE-2021-28424

Exploit
  • EPSS 0.56%
  • Veröffentlicht 01.07.2021 15:15:08
  • Zuletzt bearbeitet 21.11.2024 05:59:38

A stored cross-site scripting (XSS) vulnerability in Teachers Record Management System 1.0 allows remote authenticated users to inject arbitrary web script or HTML via the 'email' POST parameter in adminprofile.php.

9.8

CVE-2021-26822

Exploit
  • EPSS 9.89%
  • Veröffentlicht 15.02.2021 21:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:51

Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. This vulnerability can be exploited by a remote unauthenticated attacker to leak sensitive information and per...