cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-36939,https://securityvulnerability.io/vulnerability/CVE-2023-36939,Cross-Site Scripting Vulnerability in Hostel Management System by Packetstorm Security,"The Hostel Management System v2.1 has a Cross-Site Scripting (XSS) vulnerability that can be exploited by attackers through a specifically crafted payload in the search booking field. This flaw allows for the execution of arbitrary code, potentially compromising the security and integrity of the system. System administrators are urged to address this vulnerability promptly to safeguard against potential exploitation.",PHPgurukul,Hostel Management System,6.1,MEDIUM,0.0016199999954551458,false,,false,false,false,,,false,false,,2023-07-10T00:00:00.000Z,0
CVE-2023-36375,https://securityvulnerability.io/vulnerability/CVE-2023-36375,Cross Site Scripting Vulnerability in Hostel Management System from Unknown Vendor,"A Cross Site Scripting vulnerability has been identified in version 2.1 of the Hostel Management System. This flaw permits an attacker to execute arbitrary code by manipulating certain input fields, such as Guardian name, Guardian relation, complimentary address, city, and permanent address, on the Book Hostel & Room Details page. Successful exploitation may lead to unauthorized actions on behalf of the affected users, highlighting the need for immediate attention to secure these inputs.",PHPgurukul,Hostel Management System,5.4,MEDIUM,0.0011099999537691474,false,,false,false,false,,,false,false,,2023-07-10T00:00:00.000Z,0
CVE-2023-36376,https://securityvulnerability.io/vulnerability/CVE-2023-36376,Cross-Site Scripting Vulnerability in Hostel Management System by Hostel Management Solutions,"A Cross-Site Scripting (XSS) vulnerability exists in version 2.1 of the Hostel Management System, permitting attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the add course section. This can lead to compromised user sessions, unauthorized actions, and the exposure of sensitive information.",PHPgurukul,Hostel Management System,4.8,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2023-07-10T00:00:00.000Z,0
CVE-2023-34652,https://securityvulnerability.io/vulnerability/CVE-2023-34652,Cross Site Scripting Vulnerability in PHPgurukul Hostel Management System,"The PHPgurukul Hostel Management System version 1.0 is susceptible to Cross Site Scripting (XSS) vulnerabilities, particularly in the 'Add New Course' feature. This flaw allows attackers to inject malicious scripts into webpages viewed by other users, potentially leading to unauthorized actions and data theft. It is crucial for users to apply security best practices to protect against this kind of web application vulnerability.",PHPgurukul,Hostel Management System,6.1,MEDIUM,0.000859999970998615,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34647,https://securityvulnerability.io/vulnerability/CVE-2023-34647,Cross Site Scripting in PHPgurukl Hostel Management System by PHPgurukl,"The Hostel Management System by PHPgurukl, version 1.0, is susceptible to Cross Site Scripting (XSS) attacks, allowing attackers to inject malicious scripts into webpages viewed by users. This vulnerability can lead to unauthorized access to sensitive data and potentially compromise user accounts. Timely updates and security patches are essential to safeguard against such threats.",PHPgurukul,Hostel Management System,6.1,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2021-43137,https://securityvulnerability.io/vulnerability/CVE-2021-43137,Cross-Site Scripting and Cross-Site Request Forgery Issues in Hostel Management System by an Unspecified Vendor,"A notable security flaw has been identified in the Hostel Management System version 2.1, which exposes users to Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerabilities. These vulnerabilities manifest through the name field in the my-profile.php file, enabling potential attackers to exploit them. When combined, these weaknesses can lead to unauthorized account access, jeopardizing the integrity and confidentiality of user information.",PHPgurukul,Hostel Management System,8.8,HIGH,0.0015800000401213765,false,,false,false,false,,,false,false,,2021-12-01T19:14:50.000Z,0
CVE-2020-25270,https://securityvulnerability.io/vulnerability/CVE-2020-25270,Cross-Site Scripting Vulnerability in PHPGurukul Hostel Management System,"The PHPGurukul Hostel Management System version 2.1 is susceptible to a Cross-Site Scripting (XSS) vulnerability that allows attackers to inject malicious scripts via various user-input fields, including Guardian Name, Guardian Relation, Guardian Contact Number, Address, and City. This could potentially lead to unauthorized access and manipulation of sensitive user information, thereby impacting the integrity and availability of the application.",PHPgurukul,Hostel Management System,5.4,MEDIUM,0.003000000026077032,false,,false,false,true,2020-09-23T03:16:08.000Z,true,false,false,,2020-10-08T12:32:35.000Z,0
CVE-2020-5510,https://securityvulnerability.io/vulnerability/CVE-2020-5510,,PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file.,PHPgurukul,Hostel Management System,9.8,CRITICAL,0.0029299999587237835,false,,false,false,true,2021-12-05T20:53:18.000Z,true,false,false,,2020-01-08T17:32:49.000Z,0