VYPR

Vendor CVEs

Projectworlds

All CVEs

200 total · sorted by risk
  • CVE-2024-36598HigJun 14, 2024
    risk 0.53cvss 8.1epss 0.01

    An arbitrary file upload vulnerability in Aegon Life v1.0 allows attackers to execute arbitrary code via uploading a crafted image file.

  • CVE-2025-8471HigAug 2, 2025
    risk 0.50cvss 7.3epss 0.01

    A vulnerability, which was classified as critical, has been found in projectworlds Online Admission System 1.0. This issue affects some unknown processing of the file /adminlogin.php. The manipulation of the argument a_id leads to sql injection. The attack may be initiated…

  • CVE-2026-9364HigMay 24, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is an unknown function of the file /admin/adminHome.php. Executing a manipulation of the argument social_linked can lead to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2026-5368HigApr 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Car Rental Project 1.0. The affected element is an unknown function of the file /login.php of the component Parameter Handler. This manipulation of the argument uname causes sql injection. Remote exploitation of the attack is…

  • CVE-2026-4625HigMar 24, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in SourceCodester Online Admission System 1.0. This affects an unknown function of the file /programmes.php. Executing a manipulation of the argument program can lead to sql injection. The attack can be launched remotely. The exploit has been published and…

  • CVE-2026-4540HigMar 22, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in projectworlds Online Notes Sharing System 1.0. This issue affects some unknown processing of the file /login.php of the component Parameters Handler. The manipulation of the argument User results in sql injection. The attack can be executed…

  • CVE-2026-3759HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in projectworlds Online Art Gallery Shop 1.0. This affects an unknown part of the file /admin/adminHome.php. Such manipulation of the argument reach_nm leads to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2026-3758HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in projectworlds Online Art Gallery Shop 1.0. Affected by this issue is some unknown functionality of the file /admin/adminHome.php. This manipulation of the argument Info causes sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2026-3757HigMar 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in projectworlds Online Art Gallery Shop 1.0. Affected by this vulnerability is an unknown functionality of the file /?pass=1. The manipulation of the argument fnm results in sql injection. The attack may be launched remotely. The exploit has…

  • CVE-2026-3406HigMar 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to…

  • CVE-2026-2136HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Online Food Ordering System 1.0. This affects an unknown function of the file /view-ticket.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-0643HigJan 7, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds House Rental and Property Listing 1.0. Impacted is an unknown function of the file /app/register.php?action=reg of the component Signup. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack…

  • CVE-2025-14571HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /borrow_book.php. Such manipulation of the argument roll_number leads to sql injection. The attack may be launched remotely.…

  • CVE-2025-14570HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_admin.php. This manipulation of the argument admin_id causes sql injection. The attack may be initiated remotely. The…

  • CVE-2025-14527HigDec 11, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing a manipulation of the argument book_id can lead to sql injection. The attack can be executed remotely. The…

  • CVE-2025-14212HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /member_search.php. Executing a manipulation of the argument roll_number can lead to sql injection. The attack may be launched…

  • CVE-2025-14211HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delete_book.php. Performing a manipulation of the argument book_id results in sql injection. The attack may be initiated…

  • CVE-2025-14210HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in projectworlds Advanced Library Management System 1.0. Affected is an unknown function of the file /delete_member.php. Such manipulation of the argument user_id leads to sql injection. The attack can be launched remotely. The exploit…

  • CVE-2025-13572HigNov 23, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /delete_admin.php. The manipulation of the argument admin_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is…

  • CVE-2025-12938HigNov 10, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Online Admission System 1.0. Affected by this vulnerability is an unknown functionality of the file /process_login.php. The manipulation of the argument keywords leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-12237HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /index.php. Such manipulation of the argument keywords leads to sql injection. The attack can be executed remotely. The exploit is publicly…

  • CVE-2025-12215HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Online Shopping System 1.0. Impacted is an unknown function of the file /login_submit.php. Executing a manipulation of the argument keywords can lead to sql injection. The attack may be launched remotely. The exploit has been published and…

  • CVE-2025-11604HigOct 11, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Online Ordering Food System 1.0. This issue affects some unknown processing of the file /all-orders.php. This manipulation of the argument Status causes sql injection. Remote exploitation of the attack is possible. The exploit has…

  • CVE-2025-11557HigOct 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Gate Pass Management System 1.0. This issue affects some unknown processing of the file /add-pass.php. Such manipulation of the argument fullname leads to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2025-11475HigOct 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /view_member.php. Executing a manipulation of the argument user_id can lead to sql injection. The attack can be launched…

  • CVE-2025-11070HigSep 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cart_add.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and…

  • CVE-2025-9928HigSep 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted element is an unknown function of the file /viewcategory.php. Performing manipulation of the argument t1 results in sql injection. It is possible to initiate the attack remotely. The…

  • CVE-2025-9927HigSep 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Travel Management System 1.0. The affected element is an unknown function of the file /viewpackage.php. Such manipulation of the argument t1 leads to sql injection. The attack may be performed from remote. The exploit is publicly…

  • CVE-2025-9926HigSep 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Travel Management System 1.0. Impacted is an unknown function of the file /viewsubcategory.php. This manipulation of the argument t1 causes sql injection. The attack is possible to be carried out remotely. The exploit has been…

  • CVE-2025-9925HigSep 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Travel Management System 1.0. This issue affects some unknown processing of the file /detail.php. The manipulation of the argument pid results in sql injection. The attack can be executed remotely. The exploit has been made public and…

  • CVE-2025-9924HigSep 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /enquiry.php. The manipulation of the argument t2 leads to sql injection. Remote exploitation of the attack is possible. The exploit has been…

  • CVE-2025-9053HigAug 15, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /updatesubcategory.php. The manipulation of the argument t1/s1 leads to sql injection. The attack can be initiated remotely. The exploit has been…

  • CVE-2025-9052HigAug 15, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Travel Management System 1.0. This affects an unknown part of the file /updatepackage.php. The manipulation of the argument s1 leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed…

  • CVE-2025-9051HigAug 15, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /updatecategory.php. The manipulation of the argument t1 leads to sql injection. The attack may be launched remotely. The exploit has…

  • CVE-2025-9050HigAug 15, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Travel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /addcategory.php. The manipulation of the argument t1 leads to sql injection. The attack can be launched remotely. The exploit has been…

  • CVE-2025-9047HigAug 15, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Visitor Management System 1.0. Affected is an unknown function of the file /visitor_out.php. The manipulation of the argument rid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed…

  • CVE-2025-8948HigAug 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Visitor Management System 1.0. Affected is an unknown function of the file /front.php. The manipulation of the argument rid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the…

  • CVE-2025-8947HigAug 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Visitor Management System 1.0. This issue affects some unknown processing of the file /query_data.php. The manipulation of the argument dateF/dateP leads to sql injection. The attack may be initiated remotely. The exploit has been…

  • CVE-2025-8946HigAug 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Online Notes Sharing Platform 1.0. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument User leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed…

  • CVE-2025-8496HigAug 3, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /viewform.php. The manipulation of the argument ID leads to sql injection. The attack can be launched…

  • CVE-2025-8436HigAug 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Online Admission System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /viewdoc.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely.…

  • CVE-2025-8338HigJul 31, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /adminac.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The…

  • CVE-2026-10875MedJun 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds Online Art Gallery Shop Project 1.0. The impacted element is an unknown function of the file /admin/adminHome.ph. The manipulation of the argument social_twitter results in sql injection. The attack may be launched remotely.…

  • CVE-2026-10874MedJun 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in projectworlds Online Art Gallery Shop Project 1.0. The affected element is an unknown function of the file /admin/adminHome.php. The manipulation of the argument social_insta leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-13573MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds can pass malicious payloads up to 1.0. This vulnerability affects unknown code of the file /add_book.php. The manipulation of the argument image results in unrestricted upload. The attack can be executed remotely. The exploit…

  • CVE-2025-13278MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowed_book_search.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The…

  • CVE-2025-13256MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrow.php. Executing a manipulation of the argument roll_number can lead to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-13255MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds Advanced Library Management System 1.0. This issue affects some unknown processing of the file /book_search.php. Performing a manipulation of the argument book_pub/book_title results in sql injection. It is possible to…

  • CVE-2025-13254MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /add_member.php. Such manipulation of the argument roll_number leads to sql injection. The attack may be performed from remote. The exploit…

  • CVE-2025-13253MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /add_librarian.php. This manipulation of the argument Username causes sql injection. The attack is possible to be carried out remotely. The exploit…

Page 1 of 4