cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-0355,https://securityvulnerability.io/vulnerability/CVE-2024-0355,PHPGurukul Dairy Farm Shop Management System add-category.php sql injection,"A significant SQL injection vulnerability exists in the PHPGurukul Dairy Farm Shop Management System versions up to 1.1, specifically within the add-category.php file. The vulnerability arises from insufficient validation of the input parameter 'category', which allows attackers to manipulate SQL queries. This could potentially lead to unauthorized access, data extraction, or corruption within the database. The exposure of this vulnerability poses serious security concerns for users relying on the affected applications, as the exploit has been publicly disclosed and is actively being utilized.",PHPGurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.0014100000262260437,false,,false,false,true,2024-01-10T00:15:00.000Z,true,false,false,,2024-01-10T00:15:00.000Z,0
CVE-2023-41593,https://securityvulnerability.io/vulnerability/CVE-2023-41593,Multiple Cross-Site Scripting Vulnerabilities in Dairy Farm Shop Management System by MATRIXDEVIL,"The Dairy Farm Shop Management System, developed using PHP and MySQL, contains multiple cross-site scripting vulnerabilities. These vulnerabilities allow attackers to inject arbitrary web scripts and HTML through crafted payloads targeting the Category and Category Field parameters. Successful exploitation of these vulnerabilities could lead to malicious actions being taken on behalf of users, compromising the security of the application and its users.",PHPgurukul,Dairy Farm Shop Management System,5.4,MEDIUM,0.002240000059828162,false,,false,false,true,2023-09-07T06:59:09.000Z,true,false,false,,2023-09-11T00:00:00.000Z,0
CVE-2023-41594,https://securityvulnerability.io/vulnerability/CVE-2023-41594,SQL Injection Vulnerabilities in Dairy Farm Shop Management System by MATRIXDEVIL,"The Dairy Farm Shop Management System, built with PHP and MySQL, has been found to exhibit significant SQL injection vulnerabilities specifically within its Login functionality. This occurs when malicious users can manipulate the Username and Password input fields to execute arbitrary SQL code, potentially compromising the system's database integrity and exposing sensitive information. As attackers exploit these vulnerabilities, it becomes crucial for users to implement security best practices and apply necessary patches to safeguard their applications.",PHPgurukul,Dairy Farm Shop Management System,7.5,HIGH,0.0013800000306218863,false,,false,false,false,,,false,false,,2023-09-08T03:15:00.000Z,0
CVE-2022-40943,https://securityvulnerability.io/vulnerability/CVE-2022-40943,SQL Injection Vulnerability in Dairy Farm Shop Management System by PHP Gurukul,"The Dairy Farm Shop Management System version 1.0 is susceptible to SQL Injection through the bwdate-report-ds.php file. This vulnerability allows an attacker to manipulate SQL queries, potentially gaining unauthorized access to sensitive data stored in the database. Exploiting this weakness could lead to significant data breaches or data corruption, compromising the integrity and confidentiality of the application.",PHPgurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.0015699999639764428,false,,false,false,false,,,false,false,,2022-09-30T18:29:38.000Z,0
CVE-2022-40944,https://securityvulnerability.io/vulnerability/CVE-2022-40944,SQL Injection Vulnerability in Dairy Farm Shop Management System by PHP Gurukul,"The Dairy Farm Shop Management System version 1.0 is susceptible to SQL Injection attacks through the sales-report-ds.php file. This vulnerability allows attackers to execute arbitrary SQL commands, potentially leading to unauthorized access to sensitive data within the database. By manipulating input parameters, an attacker can extract, modify, or delete data, compromising the integrity and confidentiality of the information. Proper input validation and prepared statements are essential to mitigate this risk.",PHPgurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.0017099999822676182,false,,false,false,false,,,false,false,,2022-09-30T17:11:04.000Z,0
CVE-2022-29007,https://securityvulnerability.io/vulnerability/CVE-2022-29007,SQL Injection Vulnerabilities in Dairy Farm Shop Management System,"Multiple SQL injection vulnerabilities exist in the Admin panel of Dairy Farm Shop Management System v1.0, where improper handling of user inputs for the username and password parameters allows attackers to manipulate the database queries. This could lead attackers to bypass authentication controls, compromising the integrity of the system and potentially exposing sensitive information. It is crucial for administrators to apply patches or updates and enforce strong input validation to mitigate the risks associated with these vulnerabilities.",PHPgurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.7593600153923035,false,,false,false,true,2022-05-21T11:57:04.000Z,true,false,false,,2022-05-11T13:08:01.000Z,0
CVE-2020-36062,https://securityvulnerability.io/vulnerability/CVE-2020-36062,Hardcoded Credential Vulnerability in Dairy Farm Shop Management System by PHP Gurukul,"The Dairy Farm Shop Management System version 1.0 is vulnerable due to hardcoded credentials present in its source code, allowing unauthorized users to gain access to the control panel. This security flaw could lead to data breaches and unauthorized actions within the system, presenting a significant risk to the integrity and confidentiality of the application.",PHPgurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.010809999890625477,false,,false,false,false,,,false,false,,2022-02-11T15:03:42.000Z,0
CVE-2020-5308,https://securityvulnerability.io/vulnerability/CVE-2020-5308,,"PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php.",PHPgurukul,Dairy Farm Shop Management System,6.1,MEDIUM,0.0031900000758469105,false,,false,false,false,,,false,false,,2020-01-09T12:15:18.000Z,0
CVE-2020-5307,https://securityvulnerability.io/vulnerability/CVE-2020-5307,,"PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName and ProductPrice parameters in add-product.php.",PHPgurukul,Dairy Farm Shop Management System,9.8,CRITICAL,0.913569986820221,false,,false,false,false,,,false,false,,2020-01-07T18:58:33.000Z,0