#php

Multiple cross-site scripting (XSS) vulnerabilities were discovered in Church CRM v4.5.3 in GroupReports.php via GroupRole, ReportModel, and OnlyCart parameters.

PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).

PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS) via Add New Course.

PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).

PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS).

Lost and Found Information System v1.0 was discovered to contain a SQL injection vulnerability via the component /php-lfis/admin/?page=system_info/contact_information.

NewsLetter Script version 2.4 suffers from a cross site scripting vulnerability.

Simple Forum version 2.7 suffers from a cross site scripting vulnerability.

Simple Blog version 3.2 suffers from a cross site scripting vulnerability.

Photo Gallery version 2.0 suffers from a cross site scripting vulnerability.