CVE-2024-44640 | PHPGurukul Student Record System 3.20 add-course.php course-short/course-full/cdate sql injection

Inserito da Angelo Barbosa | Nov 14, 2025 | CVE

A vulnerability, which was classified as critical, was found in PHPGurukul Student Record System 3.20. Impacted is an unknown function of the file add-course.php. The manipulation of the argument course-short/course-full/cdate results in sql injection.

This vulnerability is reported as CVE-2024-44640. The attack can be launched remotely. No exploit exists.

CVE-2024-44640 | PHPGurukul Student Record System 3.20 add-course.php course-short/course-full/cdate sql injection

Post correlati

CVE-2024-43031 | autMan 2.9.6 access control

CVE-2024-56801 | InfotelGLPI tasklists up to 2.0.3 sql injection (GHSA-c6fw-xw9x-gwjw)

CVE-2016-4070 | PHP up to 5.5.33/5.6.19/7.0.4 rawurlencode ext/standard/url.c php_raw_url_encode denial of service (Bug 71798)

CVE-2024-10996 | 1000 Projects Bookstore Management System 1.0 process_category_edit.php cat sql injection