{"id":75390,"date":"2026-01-02T13:02:07","date_gmt":"2026-01-02T09:32:07","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-0547-phpgurukul-online-course-registration-student-registration-edit-student-profile-php-unrestricted-upload\/"},"modified":"2026-01-02T13:02:07","modified_gmt":"2026-01-02T09:32:07","slug":"cve-2026-0547-phpgurukul-online-course-registration-student-registration-edit-student-profile-php-unrestricted-upload","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-0547-phpgurukul-online-course-registration-student-registration-edit-student-profile-php-unrestricted-upload\/","title":{"rendered":"CVE-2026-0547 &#8211; PHPGurukul Online Course Registration Student Registration edit-student-profile.php unrestricted upload"},"content":{"rendered":"<p>CVE ID : CVE-2026-0547<\/p>\n<p>Published :  Jan. 2, 2026, 9:32 a.m. | 53\u00a0minutes ago<\/p>\n<p>Description : A vulnerability was found in PHPGurukul Online Course Registration up to 3.1. This issue affects some unknown processing of the file \/admin\/edit-student-profile.php of the component Student Registration Page. The manipulation of the argument photo results in unrestricted upload. The attack may be launched remotely. The exploit has been made public and could be used.<\/p>\n<p>Severity: 0.0 | NA<\/p>\n<p>Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2026-0547 Published : Jan. 2, 2026, 9:32 a.m. | 53\u00a0minutes ago Description : A vulnerability was found in PHPGurukul Online Course Registration up to 3.1. This issue affects some unknown processing of the file \/admin\/edit-student-profile.php of the component Student Registration Page. The manipulation of the argument photo results in unrestricted upload. The &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-75390","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/75390","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=75390"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/75390\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=75390"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=75390"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=75390"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}