Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
projectworlds vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2021-43630
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on ...
Projectworlds Hospital Management System In Php 1.0
7.5
CVSSv2
CVE-2021-43631
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.
Projectworlds Hospital Management System In Php 1.0
7.5
CVSSv2
CVE-2021-43155
Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn" parameter in cart.php.
Projectworlds Online Book Store Project In Php 1.0
4.3
CVSSv2
CVE-2021-43156
In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admin_delete.php allows a remote malicious user to delete any book.
Projectworlds Online Book Store Project In Php 1.0
4.3
CVSSv2
CVE-2021-43158
In ProjectWorlds Online Shopping System PHP 1.0, a CSRF vulnerability in cart_remove.php allows a remote malicious user to remove any product in the customer's cart.
Projectworlds Online Shopping System In Php 1.0
4.3
CVSSv2
CVE-2020-25411
Projectworlds Online Examination System 1.0 is vulnerable to CSRF, which allows a remote malicious user to delete the existing user.
Online Examination System Project Online Examination System 1.0
4.3
CVSSv2
CVE-2020-25408
A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote malicious user to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.
College Management System Project College Management System 1.0
4.3
CVSSv2
CVE-2020-29205
XSS in signup form in Project Worlds Online Examination System 1.0 allows remote malicious user to inject arbitrary code via the name field
Projectworlds Travel Management System 1.0
7.5
CVSSv2
CVE-2020-19107
SQL Injection vulnerability in Online Book Store v1.0 via the isbn parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.
Projectworlds Online Book Store Project In Php 1.0
7.5
CVSSv2
CVE-2020-19108
SQL Injection vulnerability in Online Book Store v1.0 via the pubid parameter to bookPerPub.php, which could let a remote malicious user execute arbitrary code.
Projectworlds Online Book Store Project In Php 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »