GCVE - cpe:2.3:a:egavilanmedia:phpcrud:1.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:egavilanmedia:phpcrud:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Egavilanmedia (`c107ee59-6c7b-5170-84f2-7742f2c3d696`)
Product	Phpcrud (`9ebfc79f-a27e-5afc-a1ac-2a6e77a05d4a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/egavilan-media/phpcrud`	purl2cpe	2026-06-01 10:13:24.793678

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-8564`	vulnerable	2026-06-08 07:00:24.949060	SourceCodester PHP CRUD update.php sql injection MEDIUM (6.3) A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/update.php. The manipulation of the argument tbl_person_id/first_name/middle_name/last_name leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Published: 2024-09-07T20:31:03.916Z Updated: 2024-09-09T13:33:44.484Z Open on db.gcve.eu Reference links https://vuldb.com/?id.276784 https://vuldb.com/?ctiid.276784 https://vuldb.com/?submit.403662 https://www.sourcecodester.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-8563`	vulnerable	2026-06-08 07:00:24.948227	SourceCodester PHP CRUD update.php cross site scripting LOW (3.5) A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument first_name/middle_name/last_name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2024-09-07T20:00:04.571Z Updated: 2024-09-09T13:35:27.828Z Open on db.gcve.eu Reference links https://vuldb.com/?id.276783 https://vuldb.com/?ctiid.276783 https://vuldb.com/?submit.403661 https://www.sourcecodester.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-36115`	vulnerable	2026-06-08 05:25:02.459071	Details available Stored Cross Site Scripting (XSS) vulnerability in EGavilan Media CRUD Operation with PHP, MySQL, Bootstrap, and Dompdf via First Name or Last Name parameter in the 'Add New Record Feature'. Published: 2021-01-28T19:15:37.000Z Updated: 2024-08-04T17:16:14.115Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/49484	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.