Sqill

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Discussion Forum version 1.0 **Description** A flaw exists in itsourcecode Online Discussion Forum that could allow for remote code execution. The issue is related to a SQL injection impacting an unknown function within the /index.php file. Manipulation of the `email`/`password` arguments can trigger the injection. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Discussion Forum version 1.0 **Description** A SQL injection issue exists in itsourcecode Online Discussion Forum version 1.0. The flaw is located in the file `/admin/admin forum/add views.php` and affects an unknown function. Manipulation of the `ID` argument can lead to SQL injection, allowing for remote exploitation. The exploit has been published. **Recommendations** As a temporary workaround, restrict access to the file `/admin/admin forum/add views.php` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** projectworlds Travel Management System version 1.0 **Description** A SQL injection issue exists due to the manipulation of the `pid` argument in the processing of the `/detail.php` file. This can be exploited remotely. The exploit has been made public. **Recommendations** As a temporary workaround, restrict access to the `/detail.php` file. Sanitize the `pid` argument before processing it to prevent SQL injection.

**Name of the Vulnerable Software and Affected Versions** projectworlds Travel Management System version 1.0 **Description** A vulnerability exists in projectworlds Travel Management System 1.0, affecting unknown code within the `/enquiry.php` file. The manipulation of the `t2` argument can lead to a SQL injection. Remote exploitation is possible, and the exploit has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the `/enquiry.php` file until a fix is available. Sanitize the `t2` argument to prevent SQL injection.

**Name of the Vulnerable Software and Affected Versions** projectworlds Travel Management System version 1.0 **Description** A SQL injection issue exists due to the manipulation of the `t1` argument in the file `/viewsubcategory.php`. The issue is remotely exploitable and has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the `/viewsubcategory.php` file until a fix is available. Sanitize the `t1` argument to prevent SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** projectworlds Travel Management System version 1.0 **Description** A vulnerability exists in projectworlds Travel Management System version 1.0. The issue is a SQL injection affecting an unknown function within the `/viewpackage.php` file. Remote attackers can manipulate the `t1` argument to exploit this issue. The exploit is publicly available. **Recommendations** As a temporary workaround, consider restricting access to the `/viewpackage.php` file until a fix is available. Sanitize the `t1` argument to prevent SQL injection.

**Name of the Vulnerable Software and Affected Versions** projectworlds Travel Management System version 1.0 **Description** A security flaw exists in projectworlds Travel Management System. The issue involves SQL injection in the `/viewcategory.php` file through manipulation of the `t1` argument. This allows for remote exploitation. The exploit has been released publicly. **Recommendations** As a temporary workaround, consider restricting access to the `/viewcategory.php` file until a fix is available. Avoid using the `t1` parameter in the `/viewcategory.php` endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Fire Reporting System version 1.2 **Description** A critical issue has been found in the PHPGurukul Online Fire Reporting System. The problem affects some unknown functionality of the file /admin/search.php. The manipulation of the `searchdata` argument leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For PHPGurukul Online Fire Reporting System version 1.2, as a temporary workaround, consider disabling the /admin/search.php file until a patch is available. Restrict access to the `searchdata` argument in the affected API endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Fire Reporting System version 1.2 **Description** A critical vulnerability was found in the PHPGurukul Online Fire Reporting System. The issue affects an unknown functionality of the file /admin/edit-guard-detail.php. The manipulation of the `editid` argument leads to SQL injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For PHPGurukul Online Fire Reporting System version 1.2, consider disabling access to the /admin/edit-guard-detail.php file until a patch is available. Restrict the manipulation of the `editid` argument to minimize the risk of SQL injection exploitation.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul e-Diary Management System version 1.0 **Description** A critical issue was found in the system, affecting an unknown functionality of the file /dashboard.php. The manipulation of the `Category` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For PHPGurukul e-Diary Management System version 1.0, as a temporary workaround, consider restricting access to the /dashboard.php file until a patch is available. Avoid using the `Category` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Online Fire Reporting System version 1.2 **Description** A critical issue has been discovered, affecting an unknown function of the file /search-request.php. The manipulation of the `searchdata` argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For PHPGurukul Online Fire Reporting System version 1.2, consider restricting access to the /search-request.php file until a patch is available. As a temporary workaround, avoid using the `searchdata` argument in the affected file to minimize the risk of exploitation.