cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-47445,https://securityvulnerability.io/vulnerability/CVE-2023-47445,SQL Injection Vulnerability in Pre-School Enrollment by PHPGurukul,"The Pre-School Enrollment application version 1.0 developed by PHPGurukul is susceptible to an SQL Injection attack via the username parameter on the preschool/admin/ page. This vulnerability allows an attacker to manipulate database queries executed by the application, potentially leading to unauthorized access to sensitive data and other malicious outcomes.",PHPgurukul,Pre-school Enrollment System,9.8,CRITICAL,0.0016599999507889152,false,,false,false,false,,,false,false,,2023-11-15T00:00:00.000Z,0
CVE-2023-47446,https://securityvulnerability.io/vulnerability/CVE-2023-47446,Cross Site Scripting Vulnerability in Pre-School Enrollment by PHP Gurukul,"The Pre-School Enrollment system by PHP Gurukul, specifically version 1.0, exhibits a Cross Site Scripting (XSS) vulnerability in the profile.php page. This flaw can be exploited through the 'fullname' parameter, allowing attackers to inject malicious scripts into web pages viewed by other users. Consequently, this exposure poses risks of unauthorized actions and potential data breaches, underscoring the necessity for immediate security measures and updates.",PHPgurukul,Pre-school Enrollment System,5.4,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2023-11-15T00:00:00.000Z,0