Phpgurukul - Daily Expense Tracker System CVE

Filtered by vendor Phpgurukul Subscribe

Filtered by product Daily Expense Tracker System

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-10106	1 Phpgurukul	1 Daily Expense Tracker System	2020-03-06	7.5 HIGH	9.8 CRITICAL
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to SQL injection, as demonstrated by the email parameter in index.php or register.php. The SQL injection allows to dump the MySQL database and to bypass the login prompt.

Vulnerabilities (CVE)