Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
PHPGurukul User Management System: SQL Injection in User Registration
CVE-2026-5543
Summary
A bug in the User Registration & Login and User Management System for PHPGurukul allows hackers to potentially access or manipulate sensitive user data. This could happen if an attacker knows the correct ID to use. To stay safe, update to the latest version of the software as soon as possible.
Original title
A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file /admin/yesterday-reg-users.php. The ma...
Original description
A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
6.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026