← Back

Projectworlds

projectworlds

223 CVEs • 45 products

Products (45)

Click to collapse
Toggle
Advanced Library Management System
advanced_library_management_system
17 CVEs
Online Examination System
online_examination_system
16 CVEs
Online Time Table Generator
online_time_table_generator
15 CVEs
Travel Management System
travel_management_system
14 CVEs
Life Insurance Management System
life_insurance_management_system
14 CVEs
Online Food Ordering System
online_food_ordering_system
13 CVEs
Online Book Store Project In Php
online_book_store_project_in_php
10 CVEs
Online Lawyer Management System
online_lawyer_management_system
10 CVEs
Visitor Management System
visitor_management_system
9 CVEs
Online Matrimonial Project
online_matrimonial_project
7 CVEs
Hospital Management System In Php
hospital_management_system_in_php
7 CVEs
Online Admission System
online_admission_system
7 CVEs
Online Movie Ticket Booking System
online_movie_ticket_booking_system
6 CVEs
Student Project Allocation System
student_project_allocation_system
6 CVEs
Online Doctor Appointment Booking System Php And Mysql
online_doctor_appointment_booking_system_php_and_mysql
6 CVEs
House Rental And Property Listing Project
house_rental_and_property_listing_project
4 CVEs
Car Rental Project
car_rental_project
4 CVEs
Online Shopping System
online_shopping_system
4 CVEs
Online Food Ordering Script
online_food_ordering_script
4 CVEs
Online Hotel Booking
online_hotel_booking
4 CVEs
Expense Management System
expense_management_system
4 CVEs
Online Art Gallery Shop
online_art_gallery_shop
4 CVEs
Leave Management System
leave_management_system
3 CVEs
Online Job Portal
online_job_portal
3 CVEs
Online Voting System Project
online_voting_system_project
3 CVEs
Railway Reservation System
railway_reservation_system
3 CVEs
Doctor Appointment System
doctor_appointment_system
3 CVEs
Official Car Rental System
official_car_rental_system
2 CVEs
Asset Management System
asset_management_system
2 CVEs
Simple Web Based Chat Application
simple_web-based_chat_application
2 CVEs
Online Notes Sharing Platform
online_notes_sharing_platform
2 CVEs
Gate Pass Management System
gate_pass_management_system
2 CVEs
House Rental
house_rental
1 CVE
Online Shopping Webvsite In Php
online-shopping-webvsite-in-php
1 CVE
Asset Management System Project In Php
asset_management_system_project_in_php
1 CVE
Online Book Store Project
online_book_store_project
1 CVE
Gym Management System Project
gym_management_system_project
1 CVE
Online Art Gallery
online_art_gallery
1 CVE
Online Blood Donation Management System
online_blood_donation_management_system
1 CVE
Student Result Management System
student_result_management_system
1 CVE
Free Download Online Shopping System
free_download_online_shopping_system
1 CVE
Apartment Visitors Management System
apartment_visitors_management_system
1 CVE
Hospital Database Management System
hospital_database_management_system
1 CVE
Online Tours And Travels
online_tours_and_travels
1 CVE
Gym Management System
gym_management_system
1 CVE

CVEs (223)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-43628
1Projectworlds
1Hospital Management System In Php
Nov 21, 2024
Dec 22, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.
CVE-2021-43158
1Projectworlds
1Online Shopping System
Oct 29, 2025
Dec 22, 2021
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
In ProjectWorlds Online Shopping System PHP 1.0, a CSRF vulnerability in cart_remove.php allows a remote attacker to remove any product in the customer's cart.
CVE-2021-43157
1Projectworlds
1Online Shopping System
Oct 29, 2025
Dec 22, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter in cart_remove.php.
CVE-2021-43156
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
Dec 22, 2021
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admin_delete.php allows a remote attacker to delete any book.
CVE-2021-43155
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
Dec 22, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn" parameter in cart.php.
CVE-2020-29205
1Projectworlds
1Travel Management System
Nov 21, 2024
May 17, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field
CVE-2020-19114
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the publisher parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.
CVE-2020-19113
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Arbitrary File Upload vulnerability in Online Book Store v1.0 in admin_add.php, which may lead to remote code execution.
CVE-2020-19112
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_delete.php, which could let a remote malicious user execute arbitrary code.
CVE-2020-19111
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.
CVE-2020-19110
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to book.php parameter, which could let a remote malicious user execute arbitrary code.
CVE-2020-19109
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_edit.php, which could let a remote malicious user execute arbitrary code.
CVE-2020-19108
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the pubid parameter to bookPerPub.php, which could let a remote malicious user execute arbitrary code.
CVE-2020-19107
1Projectworlds
1Online Book Store Project In Php
Nov 21, 2024
May 6, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection vulnerability in Online Book Store v1.0 via the isbn parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.
CVE-2020-27397
1Projectworlds
1Online Matrimonial Project
Nov 21, 2024
Dec 23, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Marital - Online Matrimonial Project In PHP version 1.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) on the Hosting web server via uploading a mali...Show more
Marital - Online Matrimonial Project In PHP version 1.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) on the Hosting web server via uploading a maliciously crafted PHP file.Show less
CVE-2020-25761
1Projectworlds
1Visitor Management System
Jan 23, 2026
Sep 30, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Projectworlds Visitor Management System in PHP 1.0 allows XSS. The file myform.php does not perform input validation on the request parameters. An attacker can inject javascript payloads in the parameters to perform vari...Show more
Projectworlds Visitor Management System in PHP 1.0 allows XSS. The file myform.php does not perform input validation on the request parameters. An attacker can inject javascript payloads in the parameters to perform various attacks such as stealing of cookies,sensitive information etc.Show less
CVE-2020-25760
1Projectworlds
1Visitor Management System
Jan 23, 2026
Sep 30, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Projectworlds Visitor Management System in PHP 1.0 allows SQL Injection. The file front.php does not perform input validation on the 'rid' parameter. An attacker can append SQL queries to the input to extract sensitive i...Show more
Projectworlds Visitor Management System in PHP 1.0 allows SQL Injection. The file front.php does not perform input validation on the 'rid' parameter. An attacker can append SQL queries to the input to extract sensitive information from the database.Show less
CVE-2020-23833
1Projectworlds
1House Rental
Nov 21, 2024
Sep 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Projectworlds House Rental v1.0 suffers from an unauthenticated SQL Injection vulnerability, allowing remote attackers to execute arbitrary code on the hosting webserver via a malicious index.php POST request.
CVE-2020-24199
1Projectworlds
1Car Rental Project
Nov 21, 2024
Sep 9, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Arbitrary File Upload in the Vehicle Image Upload component in Project Worlds Car Rental Management System v1.0 allows attackers to conduct remote code execution.
CVE-2020-24203
1Projectworlds
1Travel Management System
Nov 21, 2024
Aug 27, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows remote unauthenticated attackers to gain remote code executio...Show more
Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows remote unauthenticated attackers to gain remote code execution.Show less