CVE-2020-5510: SQL Injection
First published: Wed Jan 08 2020(Updated: )
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPGurukul Hostel Management System | =2.0 | |
| Hostel Management System Project Hostel Management System | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the PHPGurukul Hostel Management System?
The vulnerability ID for the PHPGurukul Hostel Management System is CVE-2020-5510.
What is the severity level of CVE-2020-5510?
The severity level of CVE-2020-5510 is critical with a CVSS score of 9.8.
How can an attacker exploit the CVE-2020-5510 vulnerability?
An attacker can exploit the CVE-2020-5510 vulnerability by performing SQL injection via the 'id' parameter in the full-profile.php file.
What software versions are affected by the CVE-2020-5510 vulnerability?
The CVE-2020-5510 vulnerability affects version 2.0 of the PHPGurukul Hostel Management System.
Is there a solution or fix for the CVE-2020-5510 vulnerability?
Yes, the vulnerability can be fixed by applying the latest update or patch provided by the software vendor.
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/description
- agent/first-publish-date
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- vendor/hostel management system project
- canonical/hostel management system project hostel management system
- version/hostel management system project hostel management system/2.0
- vendor/phpgurukul
- canonical/phpgurukul hostel management system
- version/phpgurukul hostel management system/2.0