Projectworlds
projectworlds
223 CVEs • 45 products
Products (45)
Click to collapseToggle
Products (45)
Click to collapse
CVEs (223)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Sep 28, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Online Movie Ticket Booking System v1.0 is vulnerable to
an authenticated Stored Cross-Site Scripting vulnerability.
|
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The 'age' parameter of the process_registration.php resource
does not validate the characters received and they
are sent unfiltered to the database.
|
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The 'Email' parameter of the process_login.php resource
does not validate the characters received and they
are sent unfiltered to the database.
|
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The 'search' parameter of the process_search.php resource
does not validate the characters received and they
are sent unfiltered to the database.
|
1Projectworlds 1Asset Management System Nov 21, 2024 Sep 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'first_name' and 'last_name' parameters of user.php page, allowing an authenticated attacker to dump all the contents...Show more |
1Projectworlds 1Gym Management System Project Nov 21, 2024 Sep 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Gym Management System Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'file' parameter of profile/i.php page, allowing an authenticated attacker to obtain Remote Code Execution on the serve...Show more |
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Hospital management system version 378c157 allows to bypass authentication.
This is possible because the application is vulnerable to SQLI.
|
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Hospital management system version 378c157 allows to bypass authentication.
This is possible because the application is vulnerable to SQLI.
|
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Sep 28, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Online Movie Ticket Booking System v1.0 is vulnerable to
an authenticated Reflected Cross-Site Scripting vulnerability.
|
1Projectworlds 1Online Book Store Project Nov 21, 2024 Sep 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of admin_edit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server host...Show more |
1Projectworlds 1Asset Management System Nov 21, 2024 Sep 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Asset Management System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'email' parameter of index.php page, allowing an external attacker to dump all the contents of the database contents...Show more |
1Projectworlds 1Asset Management System Project In Php Nov 21, 2024 Sep 22, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Projectworldsl Assets-management-system-in-php 1.0 is vulnerable to SQL Injection via the "id" parameter in delete.php. |
1Projectworlds 1Online Examination System May 14, 2025 Oct 14, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Online Examination System version 1.0 suffers from a cross site scripting vulnerability via index.php. |
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Mar 16, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via add_patient.php. |
1Projectworlds 1Online Movie Ticket Booking System Nov 21, 2024 Feb 3, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Online-Movie-Ticket-Booking-System 1.0. The file about.php does not perform input validation on the 'id' paramter. An attacker can append SQL queries to the input to extract sensitive informati...Show more |
1Projectworlds 1Online Shopping Webvsite In Php Nov 21, 2024 Jan 23, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a SQL Injection vulnerability via the "id" parameter in cart_add.php, No login is required. |
1Projectworlds 1Online Examination System Nov 21, 2024 Jan 21, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php. |
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Dec 22, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php. |
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Dec 22, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases...Show more |
1Projectworlds 1Hospital Management System In Php Nov 21, 2024 Dec 22, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php. |