Liuhao7328

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical issue was found in the PHPGurukul Art Gallery Management System. The problem affects some unknown functionality of the file /search.php. The manipulation of the `Search` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider disabling the /search.php file until a patch is available. Restrict access to the `Search` argument in the /search.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical issue has been found in the PHPGurukul Art Gallery Management System, affecting some unknown functionality of the file /admin/edit-artist-detail.php?editid=1. The manipulation of the `Name` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider restricting access to the `/admin/edit-artist-detail.php` endpoint until a patch is available. Avoid using the `Name` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical vulnerability was found in the PHPGurukul Art Gallery Management System. This issue affects the file /admin/edit-art-product-detail.php and allows for SQL injection through the manipulation of the `editid`, `sprice`, and `description` arguments. The attack can be initiated remotely. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider restricting access to the /admin/edit-art-product-detail.php file until a patch is available. Avoid using the `editid`, `sprice`, and `description` arguments in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical vulnerability has been found in the PHPGurukul Art Gallery Management System. This issue affects the file /admin/edit-art-type-detail.php and can be exploited remotely. The manipulation of the `arttype` argument leads to SQL injection. The exploit has been disclosed to the public and may be used. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider restricting access to the /admin/edit-art-type-detail.php file until a patch is available. Avoid using the `arttype` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical issue affects the processing of the file /admin/add-art-product.php in PHPGurukul Art Gallery Management System. The manipulation of the `arttype` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider restricting access to the /admin/add-art-product.php file until a patch is available. Additionally, avoid using the `arttype` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A vulnerability was found in the PHPGurukul Art Gallery Management System. It has been classified as problematic and affects an unknown function of the file /product.php. The manipulation of the `artname` argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, consider disabling the unknown function of the file /product.php that is affected by the manipulation of the `artname` argument until a patch is available. Restrict access to the /product.php file to minimize the risk of exploitation. Avoid using the `artname` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical vulnerability has been found in PHPGurukul Art Gallery Management System. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument `pagetitle` leads to SQL injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** To resolve the issue, update PHPGurukul Art Gallery Management System to a version that fixes the SQL injection vulnerability in the /admin/contactus.php file. As a temporary workaround, consider restricting access to the `pagetitle` argument in the /admin/contactus.php file until a patch is available. Avoid using the `pagetitle` argument in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Art Gallery Management System version 1.0 **Description** A critical vulnerability was found in the PHPGurukul Art Gallery Management System. The issue affects an unknown functionality of the file `/admin/admin-profile.php`. The manipulation of the `contactnumber` argument leads to SQL injection. The attack can be launched remotely. Other parameters might also be affected. **Recommendations** For PHPGurukul Art Gallery Management System version 1.0, as a temporary workaround, consider restricting access to the `/admin/admin-profile.php` file until a patch is available. Avoid using the `contactnumber` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.