Longlagon

**Name of the Vulnerable Software and Affected Versions** PHPGurukul BP Monitoring Management System version 1.0 **Description** A critical issue exists in PHPGurukul BP Monitoring Management System 1.0. The vulnerability is due to a SQL injection flaw within the `/bwdates-report-result.php` file. Exploitation occurs through the manipulation of the `fromdate/todate` argument, allowing for remote attacks. The exploit for this issue has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Taxi Stand Management System version 1.0 **Description** A cross site scripting issue exists due to the manipulation of the `registrationnumber`/`licensenumber` argument in the /admin/new-autoortaxi-entry-form.php file. The attack can be launched remotely. The exploit has been disclosed to the public. **Recommendations** Address the manipulation of the `registrationnumber` and `licensenumber` arguments in the /admin/new-autoortaxi-entry-form.php file.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Banquet Booking System version 1.0 **Description** A cross-site scripting issue exists due to the manipulation of the `searchdata` argument in the `/admin/booking-search.php` file. This allows for remote attacks. The exploit has been publicly disclosed. **Recommendations** PHPGurukul Online Banquet Booking System version 1.0: Sanitize the `searchdata` argument to prevent the injection of malicious scripts.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Banquet Booking System version 1.0 **Description** A critical issue exists in PHPGurukul Online Banquet Booking System 1.0. The vulnerability is located in the `/admin/view-user-queries.php` file. Manipulation of the `viewid` argument can lead to SQL injection. The exploit has been publicly disclosed and may be used to initiate attacks remotely. **Recommendations** As a temporary workaround, consider restricting access to the `/admin/view-user-queries.php` file until a patch is available.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Time Table Generator System version 1.0 PHPGurukul Taxi Stand Management System version 1.0 **Description** A problematic vulnerability exists due to cross site scripting. Manipulation of the `adminname` argument in the `/admin/profile.php` file allows for remote attacks. The exploit has been publicly disclosed and may be utilized. **Recommendations** For PHPGurukul Time Table Generator System version 1.0, sanitize or validate the `adminname` argument in the `/admin/profile.php` file to prevent the injection of malicious scripts. For PHPGurukul Taxi Stand Management System version 1.0, sanitize or validate the `adminname` argument in the `/admin/profile.php` file to prevent the injection of malicious scripts.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Banquet Booking System version 1.0 **Description** A problematic vulnerability exists in an unknown functionality of the file `/admin/admin-profile.php`. Manipulation of the `adminname` argument leads to cross-site scripting. The attack can be launched remotely, and the exploit has been disclosed publicly. **Recommendations** PHPGurukul Online Banquet Booking System version 1.0: Sanitize or validate the `adminname` argument in the `/admin/admin-profile.php` file to prevent cross-site scripting.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Taxi Stand Management System version 1.0 **Description** A problematic issue exists in PHPGurukul Taxi Stand Management System 1.0, affecting an unknown functionality within the `/admin/search-autoortaxi.php` file. Manipulation of the `searchdata` argument can lead to cross site scripting (XSS). The attack can be launched remotely, and the exploit has been publicly disclosed and may be used. **Recommendations** For PHPGurukul Taxi Stand Management System version 1.0, sanitize or properly encode the `searchdata` argument in the `/admin/search-autoortaxi.php` file to prevent XSS.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Taxi Stand Management System version 1.0 **Description** A problematic issue exists in PHPGurukul Taxi Stand Management System 1.0. The manipulation of the `searchdata` argument in the `/search.php` file leads to cross-site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed. **Recommendations** For PHPGurukul Taxi Stand Management System version 1.0, sanitize the `searchdata` input to prevent cross-site scripting. As a temporary workaround, consider restricting access to the `/search.php` file until a proper fix is implemented.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Taxi Stand Management System version 1.0 **Description** A cross site scripting issue exists due to the manipulation of the `adminname` argument in the /admin/admin-profile.php file. The attack can be launched remotely. The exploit has been disclosed to the public. **Recommendations** As a temporary workaround, consider restricting access to the /admin/admin-profile.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Banquet Booking System version 1.0 **Description** A cross site scripting issue exists due to the manipulation of the `user login`/`userpassword` argument in the /admin/login.php file. The attack can be launched remotely. The exploit has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the /admin/login.php file until a fix is available. Sanitize the `user login` and `userpassword` parameters to prevent the injection of malicious scripts.