PHPGurukul User Registration & Login and User Management System yesterday-reg-users.php sql injection

Description

A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Affected Products

Vendor	Product	Versions
phpgurukul	user registration & login and user management system	3.3

References

https://vuldb.com/vuln/355296(vdb-entry, technical-description)
https://vuldb.com/vuln/355296/cti(signature, permissions-required)
https://vuldb.com/submit/782246(third-party-advisory)
https://github.com/f1rstb100d/CVE/issues/4(exploit, issue-tracking)
https://phpgurukul.com/(product)

Related News (1 articles)

Tier C

VulDB1d ago

CVE-2026-5543 | PHPGurukul User Registration & Login and User Management System yesterday-reg-users.php sql injection

→ No new info (linked only)

CVSS 3.16.3 MEDIUM

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA KEV❌ No

Actively exploited❌ No

CWECWE-89, CWE-74

PublishedApr 5, 2026

Last enriched9h ago

Trending Score0

Source articles0

Independent0

Info Completeness0/14

Missing: cve_id, title, description, vendor, product, versions, cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

PHPGurukul User Registration & Login and User Management System yesterday-reg-users.php sql injection

Description

Affected Products

References

Related News (1 articles)

Community Vote

Related CVEs (5)

Pin to Dashboard

Verification

Vulnerability Timeline