VYPR
Vendor

Projectworlds

Products
26
CVEs
200
Across products
200
Status
Private

Products

26

Recent CVEs

200
View all 200 CVEs →
  • CVE-2024-36598HigJun 14, 2024
    risk 0.53cvss 8.1epss 0.01

    An arbitrary file upload vulnerability in Aegon Life v1.0 allows attackers to execute arbitrary code via uploading a crafted image file.

  • CVE-2025-8471HigAug 2, 2025
    risk 0.50cvss 7.3epss 0.01

    A vulnerability, which was classified as critical, has been found in projectworlds Online Admission System 1.0. This issue affects some unknown processing of the file /adminlogin.php. The manipulation of the argument a_id leads to sql injection. The attack may be initiated…

  • CVE-2026-9364HigMay 24, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is an unknown function of the file /admin/adminHome.php. Executing a manipulation of the argument social_linked can lead to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2026-5368HigApr 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Car Rental Project 1.0. The affected element is an unknown function of the file /login.php of the component Parameter Handler. This manipulation of the argument uname causes sql injection. Remote exploitation of the attack is…

  • CVE-2026-4625HigMar 24, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in SourceCodester Online Admission System 1.0. This affects an unknown function of the file /programmes.php. Executing a manipulation of the argument program can lead to sql injection. The attack can be launched remotely. The exploit has been published and…

  • CVE-2026-4540HigMar 22, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in projectworlds Online Notes Sharing System 1.0. This issue affects some unknown processing of the file /login.php of the component Parameters Handler. The manipulation of the argument User results in sql injection. The attack can be executed…

  • CVE-2026-3759HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in projectworlds Online Art Gallery Shop 1.0. This affects an unknown part of the file /admin/adminHome.php. Such manipulation of the argument reach_nm leads to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2026-3758HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in projectworlds Online Art Gallery Shop 1.0. Affected by this issue is some unknown functionality of the file /admin/adminHome.php. This manipulation of the argument Info causes sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2026-3757HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in projectworlds Online Art Gallery Shop 1.0. Affected by this vulnerability is an unknown functionality of the file /?pass=1. The manipulation of the argument fnm results in sql injection. The attack may be launched remotely. The exploit has…

  • CVE-2026-3406HigMar 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to…

  • CVE-2026-2136HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Online Food Ordering System 1.0. This affects an unknown function of the file /view-ticket.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-0643HigJan 7, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds House Rental and Property Listing 1.0. Impacted is an unknown function of the file /app/register.php?action=reg of the component Signup. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack…

  • CVE-2025-14571HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /borrow_book.php. Such manipulation of the argument roll_number leads to sql injection. The attack may be launched remotely.…

  • CVE-2025-14570HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_admin.php. This manipulation of the argument admin_id causes sql injection. The attack may be initiated remotely. The…

  • CVE-2025-14527HigDec 11, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing a manipulation of the argument book_id can lead to sql injection. The attack can be executed remotely. The…

  • CVE-2025-14212HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /member_search.php. Executing a manipulation of the argument roll_number can lead to sql injection. The attack may be launched…

  • CVE-2025-14211HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delete_book.php. Performing a manipulation of the argument book_id results in sql injection. The attack may be initiated…

  • CVE-2025-14210HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in projectworlds Advanced Library Management System 1.0. Affected is an unknown function of the file /delete_member.php. Such manipulation of the argument user_id leads to sql injection. The attack can be launched remotely. The exploit…

  • CVE-2025-13572HigNov 23, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /delete_admin.php. The manipulation of the argument admin_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is…

  • CVE-2025-12938HigNov 10, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Online Admission System 1.0. Affected by this vulnerability is an unknown functionality of the file /process_login.php. The manipulation of the argument keywords leads to sql injection. The attack can be initiated remotely. The…