Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
projectworlds vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-45202
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the feed.php resource allows an malicious user to redirect a victim user to an arbitrary web site using a crafted URL.
Projectworlds Online Examination System 1.0
6.1
CVSSv3
CVE-2023-45203
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the login.php resource allows an malicious user to redirect a victim user to an arbitrary web site using a crafted URL.
Projectworlds Online Examination System 1.0
6.1
CVSSv3
CVE-2023-45201
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the admin.php resource allows an malicious user to redirect a victim user to an arbitrary web site using a crafted URL.
Projectworlds Online Examination System 1.0
6.1
CVSSv3
CVE-2023-44484
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodifie...
Projectworlds Online Blood Donation Management System 1.0
8.8
CVSSv3
CVE-2023-44480
Leave Management System Project v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'setcasualleave' parameter of the admin/setleaves.php resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Leave Management System 1.0
9.8
CVSSv3
CVE-2023-44267
Online Art Gallery v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'lnm' parameter of the header.php resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Art Gallery 1.0
8.8
CVSSv3
CVE-2023-43014
Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'first_name' and 'last_name' parameters of user.php page, allowing an authenticated malicious user to dump all the contents of the database contents.
Projectworlds Asset Management System 1.0
9.8
CVSSv3
CVE-2023-44163
The 'search' parameter of the process_search.php resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Movie Ticket Booking System 1.0
9.8
CVSSv3
CVE-2023-44164
The 'Email' parameter of the process_login.php resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Movie Ticket Booking System 1.0
5.4
CVSSv3
CVE-2023-44174
Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Stored Cross-Site Scripting vulnerability.
Projectworlds Online Movie Ticket Booking System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »