Home

Description

PHPGurukul Student Record System 3.20 is vulnerable to Cross Site Scripting (XSS) via adminname and aemailid parameters in /admin-profile.php.

PUBLISHED Reserved 2024-08-21 | Published 2025-11-14 | Updated 2025-11-14 | Assigner mitre

References

phpgurukul.com/student-record-system-php

github.com/leexsoyoung/CVEs/blob/main/CVE-2024-44635.md

cve.org (CVE-2024-44635)

nvd.nist.gov (CVE-2024-44635)

Download JSON