VYPR
Vendor

Projectworlds.in

Products
4
CVEs
10
Across products
10
Status
Private

Products

4

Recent CVEs

10
  • CVE-2023-46793CriNov 7, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Matrimonial Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'day' parameter in the 'register()' function of the functions.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-46787CriNov 7, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Matrimonial Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the auth/auth.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-46785CriNov 7, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Matrimonial Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the partner_preference.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-46679CriNov 7, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txt_uname_email' parameter of the index.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45338CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the routers/add-ticket.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45343CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ticket_id' parameter of the routers/ticket-message.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45340CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/details-router.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45336CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/router.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45325CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'address' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2021-43631CriDec 22, 2021
    risk 0.64cvss 9.8epss 0.01

    Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.