Every CVE whose affected-product data names Phpgurukul Job Portal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2024-8463 — CVSS 9.9 (critical): File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of which could allow an authenticated user to…
CVE-2024-8464 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through JOBREGID parameter in…
CVE-2024-8465 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through user_id parameter in /jobportal/admin/user/c…
CVE-2024-8466 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in…
CVE-2024-8467 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/category/in…
CVE-2024-8468 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through search parameter in /jobportal/index.php…
CVE-2024-8469 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/employee/in…
CVE-2024-8470 — CVSS 9.8 (critical): SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in…
CVE-2020-10225 — CVSS 9.8 (critical): An unauthenticated file upload vulnerability has been identified in admin/gallery.php in PHPGurukul Job Portal 1.0. The vulnerability could…
CVE-2024-8471 — CVSS 6.3 (medium): Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability…
CVE-2024-8472 — CVSS 6.3 (medium): Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability…
CVE-2024-8473 — CVSS 6.3 (medium): Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability…