Phpgurukul Daily Expense Tracker System — known CVE vulnerabilities
Every CVE whose affected-product data names Phpgurukul Daily Expense Tracker System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2025-25349 — CVSS 9.8 (critical): PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense.php via the costitem parameter.
CVE-2020-10106 — CVSS 9.8 (critical): PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to SQL injection, as demonstrated by the email parameter in index.php or…
CVE-2025-25351 — CVSS 9.8 (critical): PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense.php via the dateexpense parameter.
CVE-2025-4785 — CVSS 7.3 (high): A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some…
CVE-2025-4907 — CVSS 7.3 (high): A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some…
CVE-2025-4908 — CVSS 7.3 (high): A vulnerability classified as critical has been found in PHPGurukul Daily Expense Tracker System 1.1. This affects an unknown part of the…
CVE-2025-4925 — CVSS 7.3 (high): A vulnerability has been found in PHPGurukul Daily Expense Tracker System 1.1 and classified as critical. Affected by this vulnerability is…
CVE-2025-5546 — CVSS 6.3 (medium): A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of…
CVE-2025-5368 — CVSS 6.3 (medium): A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown…
CVE-2021-26303 — CVSS 6.1 (medium): PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field.
CVE-2021-26304 — CVSS 5.4 (medium): PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter.
CVE-2020-10107 — CVSS 5.4 (medium): PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS, as demonstrated by the ExpenseItem or ExpenseCost parameter in…