0x1c1ph3r/CVEs

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-51060 ↗	Oct 31, 2024Thursday, 31 October 2024, 19:15	9.1 CRITICAL	—
Projectworlds Online Admission System v1 is vulnerable to SQL Injection in index.php via the 'a_id' parameter.
CVE-2024-51063 ↗	Oct 31, 2024Thursday, 31 October 2024, 19:15	9.1 CRITICAL	—
Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection in add-teacher.php via the mobile number or email parameter.
CVE-2024-51064 ↗	Oct 31, 2024Thursday, 31 October 2024, 19:15	9.8 CRITICAL	—
Phpgurukul Teachers Record Management System v2.1 is vulnerable to SQL Injection via the tid parameter to admin/queries.php.
CVE-2024-51065 ↗	Oct 31, 2024Thursday, 31 October 2024, 19:15	9.8 CRITICAL	—
Phpgurukul Beauty Parlour Management System v1.1 is vulnerable to SQL Injection in admin/index.php via the the username parameter.
CVE-2024-51066 ↗	Oct 31, 2024Thursday, 31 October 2024, 19:15	7.5 HIGH	—
An Insecure Direct Object Reference (IDOR) vulnerability in appointment-detail.php in Phpgurukul's Beauty Parlour Management System v1.1 allows unauthorized access to the Personally Identifiable Information (PII) of other customers.