Phpgurukul Online Shopping Portal — known CVE vulnerabilities
Every CVE whose affected-product data names Phpgurukul Online Shopping Portal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (33)
CVE-2021-46110 — CVSS 9.8 (critical): Online Shopping Portal v3.1 was discovered to contain multiple time-based SQL injection vulnerabilities via the email and contactno…
CVE-2024-44659 — CVSS 9.8 (critical): PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the email parameter in forgot-password.php.
CVE-2025-57148 — CVSS 9.1 (critical): phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension…
CVE-2023-37772 — CVSS 8.8 (high): Online Shopping Portal Project v3.1 was discovered to contain a SQL injection vulnerability via the Email parameter at /shopping/login.php.
CVE-2023-38890 — CVSS 8.8 (high): Online Shopping Portal Project 3.1 allows remote attackers to execute arbitrary SQL commands/queries via the login form, leading to…
CVE-2021-37807 — CVSS 7.5 (high): An SQL Injection vulneraility exists in https://phpgurukul.com Online Shopping Portal 3.1 via the email parameter on the…
CVE-2025-5367 — CVSS 7.3 (high): A vulnerability was found in PHPGurukul Online Shopping Portal Project 1.0. It has been declared as critical. This vulnerability affects…
CVE-2025-5079 — CVSS 7.3 (high): A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the…
CVE-2025-5078 — CVSS 7.3 (high): A vulnerability was detected in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file…
CVE-2024-9326 — CVSS 7.3 (high): A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the…
CVE-2024-44663 — CVSS 6.5 (medium): PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the product parameter in search-result.php.
CVE-2023-3605 — CVSS 6.5 (medium): A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an…
CVE-2024-44664 — CVSS 6.5 (medium): PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the name, summary, review, quality, price, and value parameters in…
CVE-2024-44662 — CVSS 6.5 (medium): PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the username parameter in the admin page.
CVE-2024-44660 — CVSS 6.5 (medium): PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the fullname, emailid, and contactno parameters in login.php.
CVE-2025-1578 — CVSS 6.3 (medium): A vulnerability, which was classified as critical, was found in PHPGurukul/Campcodes Online Shopping Portal 2.1. This affects an unknown…
CVE-2025-1855 — CVSS 6.3 (medium): A vulnerability was found in PHPGurukul Online Shopping Portal 2.1. It has been declared as critical. Affected by this vulnerability is an…
CVE-2024-39090 — CVSS 6.1 (medium): The PHPGurukul Online Shopping Portal Project version 2.0 contains a vulnerability that allows Cross-Site Request Forgery (CSRF) to lead to…
CVE-2025-52074 — CVSS 6.1 (medium): PHPGURUKUL Online Shopping Portal 2.1 is vulnerable to Cross Site Scripting (XSS) due to lack of input sanitization in the quantity…
CVE-2025-57576 — CVSS 5.4 (medium): PHPGurukul Online Shopping Portal 2.1 is vulnerable to Cross Site Scripting (XSS) in /admin/updateorder.php.
CVE-2024-44661 — CVSS 5.4 (medium): PHPGurukul Online Shopping Portal 2.0 is vulnerable to Cross Site Scripting (XSS) via the quantity parameter in my-cart.php.
CVE-2025-65647 — CVSS 4.3 (medium): Insecure Direct Object Reference (IDOR) in the Track order function in PHPGURUKUL Online Shopping Portal 2.1 allows information disclosure…
CVE-2024-10755 — CVSS 3.5 (low): A vulnerability classified as problematic has been found in PHPGurukul Online Shopping Portal 2.0. Affected is an unknown function of the…
CVE-2024-10754 — CVSS 3.5 (low): A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. This issue affects some unknown…
CVE-2024-10753 — CVSS 3.5 (low): A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. This vulnerability affects unknown…
CVE-2024-10747 — CVSS 3.5 (low): A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of…
CVE-2024-10746 — CVSS 3.5 (low): A vulnerability classified as problematic has been found in PHPGurukul Online Shopping Portal 2.0. This affects an unknown part of the file…
CVE-2024-10745 — CVSS 3.5 (low): A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. Affected by this issue is some…
CVE-2024-10744 — CVSS 3.5 (low): A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. Affected by this vulnerability is…
CVE-2024-10743 — CVSS 3.5 (low): A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been classified as problematic. Affected is an unknown function…
CVE-2024-10768 — CVSS 3.5 (low): A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of…
CVE-2024-10757 — CVSS 3.5 (low): A vulnerability, which was classified as problematic, has been found in PHPGurukul Online Shopping Portal 2.0. Affected by this issue is…
CVE-2024-10756 — CVSS 3.5 (low): A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. Affected by this vulnerability is an unknown…