Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

PHPGurukul — Vulnerabilities & Security Advisories 705

Browse all 705 CVE security advisories affecting PHPGurukul. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PHPGurukul operates as an educational platform providing free coding tutorials and project resources, primarily targeting students and beginners in web development. Despite its benign educational intent, the platform has been associated with a significant number of security issues, currently holding 705 recorded CVEs. These vulnerabilities predominantly stem from poorly secured downloadable source code and outdated scripts shared within its repository. Common flaw classes include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often resulting from insufficient input validation and hardcoded credentials in legacy projects. While PHPGurukul itself is not typically the direct target of sophisticated attacks, the widespread distribution of its unpatched materials creates a substantial attack surface for downstream users. The high volume of CVEs reflects systemic neglect in code review processes rather than a single major breach, highlighting the risks inherent in distributing unvetted software assets to novice developers.

Top products by PHPGurukul: Online Fire Reporting System Art Gallery Management System Beauty Parlour Management System Complaint Management system Hospital Management System Zoo Management System Apartment Visitors Management System Nipah Virus Testing Management System Online Shopping Portal Vehicle Parking Management System Boat Booking System Emergency Ambulance Hiring Portal Bank Locker Management System Old Age Home Management System Pre-School Enrollment System Men Salon Management System Restaurant Table Booking System COVID19 Testing Management System Student Record System Human Metapneumovirus Testing Management System Land Record System Employee Record Management System Dairy Farm Shop Management System Online Course Registration Small CRM Online Shopping Portal Project e-Diary Management System Directory Management System News Portal Job Portal
CVE IDTitleCVSSSeverityPublished
CVE-2026-6193 PHPGurukul Daily Expense Tracking System register.php sql injection — Daily Expense Tracking SystemCWE-89 7.3 High2026-04-13
CVE-2026-6162 PHPGurukul Company Visitor Management System bwdates-reports-details.php cross site scripting — Company Visitor Management SystemCWE-79 3.5 Low2026-04-13
CVE-2026-5840 PHPGurukul News Portal Project check_availability.php sql injection — News Portal ProjectCWE-89 4.7 Medium2026-04-09
CVE-2026-5839 PHPGurukul News Portal Project add-subcategory.php sql injection — News Portal ProjectCWE-89 4.7 Medium2026-04-09
CVE-2026-5838 PHPGurukul News Portal Project add-subadmins.php sql injection — News Portal ProjectCWE-89 4.7 Medium2026-04-09
CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection — News Portal ProjectCWE-89 7.3 High2026-04-09
CVE-2026-5814 PHPGurukul Online Course Registration check_availability.php sql injection — Online Course RegistrationCWE-89 7.3 High2026-04-08
CVE-2026-5813 PHPGurukul Online Course Registration check_availability.php sql injection — Online Course RegistrationCWE-89 7.3 High2026-04-08
CVE-2026-5641 PHPGurukul Online Shopping Portal Project Parameter update-image1.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5640 PHPGurukul Online Shopping Portal Project Parameter update-image2.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5639 PHPGurukul Online Shopping Portal Project Parameter update-image3.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5636 PHPGurukul Online Shopping Portal Project Parameter cancelorder.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5635 PHPGurukul Online Shopping Portal Project Parameter categorywise-products.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5606 PHPGurukul Online Shopping Portal Project Parameter order-details.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-06
CVE-2026-5583 PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-05
CVE-2026-5560 PHPGurukul Online Shopping Portal Project Parameter payment-method.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-05
CVE-2026-5558 PHPGurukul PHPGurukul Online Shopping Portal Project Parameter pending-orders.php sql injection — PHPGurukul Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-05
CVE-2026-5552 PHPGurukul Online Shopping Portal Project Parameter sub-category.php sql injection — Online Shopping Portal ProjectCWE-89 6.3 Medium2026-04-05
CVE-2026-5543 PHPGurukul User Registration & Login and User Management System yesterday-reg-users.php sql injection — User Registration & Login and User Management SystemCWE-89 6.3 Medium2026-04-05
CVE-2026-3403 PHPGurukul Student Record Management System edit-subject.php cross site scripting — Student Record Management SystemCWE-79 2.4 Low2026-03-02
CVE-2026-3402 PHPGurukul Student Record Management System edit-course.php cross site scripting — Student Record Management SystemCWE-79 2.4 Low2026-03-02
CVE-2026-2179 PHPGurukul Hospital Management System manage-users.php sql injection — Hospital Management SystemCWE-89 4.7 Medium2026-02-08
CVE-2026-2134 PHPGurukul Hospital Management System manage-doctors.php sql injection — Hospital Management SystemCWE-89 4.7 Medium2026-02-08
CVE-2026-2088 PHPGurukul Beauty Parlour Management System accepted-appointment.php sql injection — Beauty Parlour Management SystemCWE-89 7.3 High2026-02-07
CVE-2026-1550 PHPGurukul Hospital Management System Admin Dashboard adminviews.py improper authorization — Hospital Management SystemCWE-285 6.3 Medium2026-01-28
CVE-2026-1424 PHPGurukul News Portal Profile Pic unrestricted upload — News PortalCWE-434 4.7 Medium2026-01-26
CVE-2026-1160 PHPGurukul Directory Management System Search index.php sql injection — Directory Management SystemCWE-89 7.3 High2026-01-19
CVE-2026-1142 PHPGurukul News Portal cross-site request forgery — News PortalCWE-352 4.3 Medium2026-01-19
CVE-2026-1141 PHPGurukul News Portal Add Sub-Admin add-subadmins.php improper authorization — News PortalCWE-285 6.3 Medium2026-01-19
CVE-2026-0803 PHPGurukul Online Course Registration System enroll.php sql injection — Online Course Registration SystemCWE-89 6.3 Medium2026-01-09

This page lists every published CVE security advisory associated with PHPGurukul. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.