Phpgurukul News Portal — known CVE vulnerabilities
Every CVE whose affected-product data names Phpgurukul News Portal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2025-69992 — CVSS 9.8 (critical): phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the…
CVE-2025-69990 — CVSS 9.1 (critical): phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file.php. The parameter file can cause any file…
CVE-2025-1859 — CVSS 7.3 (high): A vulnerability, which was classified as critical, has been found in PHPGurukul News Portal 4.1. This issue affects some unknown processing…
CVE-2025-4873 — CVSS 7.3 (high): A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vulnerability is an unknown…
CVE-2025-4874 — CVSS 7.3 (high): A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this issue is some unknown…
CVE-2025-4880 — CVSS 7.3 (high): A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vulnerability is an unknown…
CVE-2026-1141 — CVSS 6.3 (medium): A vulnerability was identified in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file…
CVE-2021-37808 — CVSS 5.9 (medium): SQL Injection vulnerabilities exist in https://phpgurukul.com News Portal Project 3.1 via the (1) category, (2) subcategory, (3)…
CVE-2025-12615 — CVSS 5.0 (medium): A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file…
CVE-2026-1424 — CVSS 4.7 (medium): A vulnerability was identified in PHPGurukul News Portal 1.0. This affects an unknown part of the component Profile Pic Handler. The…
CVE-2026-1142 — CVSS 4.3 (medium): A security flaw has been discovered in PHPGurukul News Portal 1.0. The impacted element is an unknown function. Performing a manipulation…
CVE-2025-12616 — CVSS 3.7 (low): A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py…