Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
projectworlds vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-23833
Projectworlds House Rental v1.0 suffers from an unauthenticated SQL Injection vulnerability, allowing remote malicious users to execute arbitrary code on the hosting webserver via a malicious index.php POST request.
Projectworlds House Rental 1.0
8.8
CVSSv3
CVE-2023-43014
Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'first_name' and 'last_name' parameters of user.php page, allowing an authenticated malicious user to dump all the contents of the database contents.
Projectworlds Asset Management System 1.0
8.8
CVSSv3
CVE-2020-27397
Marital - Online Matrimonial Project In PHP version 1.0 suffers from an authenticated file upload vulnerability allowing remote malicious users to gain remote code execution (RCE) on the Hosting web server via uploading a maliciously crafted PHP file.
Projectworlds Online Matrimonial Project 1.0
8.8
CVSSv3
CVE-2023-45115
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'ch' parameter of the /update.php?q=addqns resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
8.8
CVSSv3
CVE-2023-45116
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'demail' parameter of the /update.php resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
8.8
CVSSv3
CVE-2023-45117
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'eid' parameter of the /update.php?q=rmquiz resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
8.8
CVSSv3
CVE-2023-45119
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'n' parameter of the /update.php?q=quiz resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
8.8
CVSSv3
CVE-2023-45121
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'desc' parameter of the /update.php?q=addquiz resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
9.8
CVSSv3
CVE-2023-43013
Asset Management System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'email' parameter of index.php page, allowing an external malicious user to dump all the contents of the database contents and bypass the login control.
Projectworlds Asset Management System 1.0
6.1
CVSSv3
CVE-2022-42066
Online Examination System version 1.0 suffers from a cross site scripting vulnerability via index.php.
Projectworlds Online Examination System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »