Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-44630

Multiple parameters in register.php in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. These include: c-full, fname, mname,lname, gname, ocp, nation, mobno, email, board1, roll1, pyear1, board2, roll2, pyear2, sub1,marks1, sub2, course-short, income, category, ph, country, state, city, padd, cadd, and gender.

Published

2025-11-14T16:15:47.453

Last Modified

2025-11-17T17:40:28.267

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	phpgurukul	student_record_system	3.20	Yes

References

https://github.com/leexsoyoung/CVEs/blob/main/CVE-2024-44630.md Exploit, Third Party Advisory ([email protected])
https://phpgurukul.com/student-record-system-php Product ([email protected])