cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-6766,https://securityvulnerability.io/vulnerability/CVE-2023-6766,PHPGurukul Teacher Subject Allocation Management System Delete Course course.php cross-site request forgery,A vulnerability classified as problematic has been found in PHPGurukul Teacher Subject Allocation Management System 1.0. Affected is an unknown function of the file /admin/course.php of the component Delete Course Handler. The manipulation of the argument delid leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-247896.,PHPgurukul,Teacher Subject Allocation Management System,4.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2023-12-13T18:15:00.000Z,0
CVE-2023-6653,https://securityvulnerability.io/vulnerability/CVE-2023-6653,PHPGurukul Teacher Subject Allocation Management System Create a new Subject subject.php cross-site request forgery,A vulnerability was found in PHPGurukul Teacher Subject Allocation Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/subject.php of the component Create a new Subject. The manipulation of the argument cid leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-247346 is the identifier assigned to this vulnerability.,PHPGurukul,Teacher Subject Allocation Management System,4.3,MEDIUM,0.0007200000109151006,false,,false,false,false,,,false,false,,2023-12-10T13:15:00.000Z,0
CVE-2023-6649,https://securityvulnerability.io/vulnerability/CVE-2023-6649,PHPGurukul Teacher Subject Allocation Management System index.php cross site scripting,A vulnerability has been found in PHPGurukul Teacher Subject Allocation Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file index.php. The manipulation of the argument searchdata with the input <script>alert(5)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-247342 is the identifier assigned to this vulnerability.,PHPGurukul,Teacher Subject Allocation Management System,6.1,MEDIUM,0.0007200000109151006,false,,false,false,false,,,false,false,,2023-12-10T10:15:00.000Z,0
CVE-2023-46024,https://securityvulnerability.io/vulnerability/CVE-2023-46024,SQL Injection Vulnerability in phpgurukul Teacher Subject Allocation Management System,"A SQL Injection vulnerability in the index.php file of phpgurukul's Teacher Subject Allocation Management System version 1.0 permits attackers to execute arbitrary SQL commands. This can lead to unauthorized access to sensitive information through manipulation of the 'searchdata' parameter, compromising the confidentiality and integrity of the system's data.",PHPgurukul,Teacher Subject Allocation Management System,7.5,HIGH,0.0017300000181421638,false,,false,false,false,,,false,false,,2023-11-14T00:00:00.000Z,0
CVE-2023-46025,https://securityvulnerability.io/vulnerability/CVE-2023-46025,SQL Injection Vulnerability in Teacher Subject Allocation Management System by phpgurukul,"An SQL Injection vulnerability exists in the teacher-info.php file of the Teacher Subject Allocation Management System version 1.0 by phpgurukul. This flaw allows attackers to manipulate the 'editid' parameter, potentially leading to unauthorized access to sensitive data stored within the system. Exploiting this vulnerability could compromise the integrity of user information, making it crucial for system administrators to apply patches and safeguard their applications.",PHPgurukul,Teacher Subject Allocation Management System,4.9,MEDIUM,0.0007600000244565308,false,,false,false,false,,,false,false,,2023-11-14T00:00:00.000Z,0
CVE-2023-46026,https://securityvulnerability.io/vulnerability/CVE-2023-46026,Cross Site Scripting Vulnerability in phpgurukul Teacher Subject Allocation Management System,"The phpgurukul Teacher Subject Allocation Management System version 1.0 is susceptible to a Cross Site Scripting vulnerability due to improper validation of user input in profile.php. Attackers can exploit this flaw by injecting malicious scripts through the 'adminname' and 'email' parameters. This could lead to unauthorized access or manipulation of sensitive data, highlighting the critical need for users to apply security patches and validate input effectively.",PHPgurukul,Teacher Subject Allocation Management System,4.8,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2023-11-14T00:00:00.000Z,0