Vulnerabilities > Projectworlds > Visitor Management System IN PHP

DATE CVE VULNERABILITY TITLE RISK
2024-01-25 CVE-2024-22922 Improper Privilege Management vulnerability in Projectworlds Visitor Management System in PHP 1.0
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
network
low complexity
projectworlds CWE-269
critical
 9.8
9.8
2020-09-30 CVE-2020-25761 Cross-site Scripting vulnerability in PHP 1.0
Projectworlds Visitor Management System in PHP 1.0 allows XSS. 		4.3
4.3
2020-09-30 CVE-2020-25760 SQL Injection vulnerability in Projectworlds Visitor Management System in PHP 1.0
Projectworlds Visitor Management System in PHP 1.0 allows SQL Injection.
network
low complexity
projectworlds CWE-89
6.5
6.5