Vulnerabilities > Projectworlds

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-02	CVE-2023-45342	SQL Injection vulnerability in Projectworlds Online Food Ordering System 1.0 Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. network low complexity projectworlds CWE-89 critical	9.8
2023-11-02	CVE-2023-45343	SQL Injection vulnerability in Projectworlds Online Food Ordering System 1.0 Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. network low complexity projectworlds CWE-89 critical	9.8
2023-11-02	CVE-2023-45344	SQL Injection vulnerability in Projectworlds Online Food Ordering System 1.0 Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. network low complexity projectworlds CWE-89 critical	9.8
2023-11-01	CVE-2023-45202	Open Redirect vulnerability in Projectworlds Online Examination System 1.0 Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. network low complexity projectworlds CWE-601	6.1
2023-11-01	CVE-2023-45203	Open Redirect vulnerability in Projectworlds Online Examination System 1.0 Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. network low complexity projectworlds CWE-601	6.1
2023-11-01	CVE-2023-45201	Open Redirect vulnerability in Projectworlds Online Examination System 1.0 Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the admin.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL. network low complexity projectworlds CWE-601	6.1
2023-10-31	CVE-2023-44484	Cross-site Scripting vulnerability in Projectworlds Online Blood Donation Management System 1.0 Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. network low complexity projectworlds CWE-79	6.1
2023-10-27	CVE-2023-44480	SQL Injection vulnerability in Projectworlds Leave Management System 1.0 Leave Management System Project v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'setcasualleave' parameter of the admin/setleaves.php resource does not validate the characters received and they are sent unfiltered to the database. network low complexity projectworlds CWE-89	8.8
2023-10-26	CVE-2023-44267	SQL Injection vulnerability in Projectworlds Online ART Gallery 1.0 Online Art Gallery v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. network low complexity projectworlds CWE-89 critical	9.8
2023-09-28	CVE-2023-43014	SQL Injection vulnerability in Projectworlds Asset Management System 1.0 Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'first_name' and 'last_name' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents. network low complexity projectworlds CWE-89	8.8

Vulnerabilities > Projectworlds {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Projectworlds"}]}

Vulnerabilities > Projectworlds