Lucene search
K

283 matches found

NVD
NVD
added 2025/06/16 8:15 p.m.15 views

CVE-2025-6136

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/06/16 7:31 p.m.34 views

CVE-2025-6136

Projectworlds Life Insurance Management System 1.0 contains a SQL injection in /insertPayment.php caused by manipulating the recipt_no parameter. This vulnerability can be exploited remotely and has had publicly disclosed exploits. Mitigation available in the connected PT-2025-25584 entry suggest...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/06/16 7:31 p.m.25 views

CVE-2025-6136 Projectworlds Life Insurance Management System insertPayment.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS0.00387EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/16 7:31 p.m.6 views

CVE-2025-6136 Projectworlds Life Insurance Management System insertPayment.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS7.6AI score0.00387EPSS
Exploits1References5
NVD
NVD
added 2025/06/16 7:15 p.m.16 views

CVE-2025-6135

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument clientid/nomineeid leads to sql injection. The attack can be initiated...

9.8CVSS0.00387EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/06/16 7:0 p.m.5 views

CVE-2025-6135 Projectworlds Life Insurance Management System insertNominee.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument clientid/nomineeid leads to sql injection. The attack can be initiated...

6.5CVSS7.8AI score0.00387EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/16 7:0 p.m.18 views

CVE-2025-6135 Projectworlds Life Insurance Management System insertNominee.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument clientid/nomineeid leads to sql injection. The attack can be initiated...

6.5CVSS0.00387EPSS
Exploits1References6
CVE
CVE
added 2025/06/16 7:0 p.m.35 views

CVE-2025-6135

CVE-2025-6135 affects Projectworlds Life Insurance Management System v1.0. The vulnerability resides in /insertNominee.php, where manipulation of the arguments client_id/nominee_id enables SQL injection. Reports indicate remote exploitation with the exploit disclosed publicly. Affected components...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/16 6:31 p.m.8 views

CVE-2025-6134 Projectworlds Life Insurance Management System insertClient.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument clientid leads to sql injection. It is possible to initiate the attack remotely. The...

6.5CVSS6.7AI score0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/06/16 6:31 p.m.30 views

CVE-2025-6134

Projectworlds Life Insurance Management System 1.0 contains a SQL injection vulnerability in /insertClient.php, caused by manipulation of the client_id parameter. Remote exploitation is possible, and public disclosures exist. Other parameters may be affected. Connected sources note a remediation ...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/06/16 6:31 p.m.18 views

CVE-2025-6134 Projectworlds Life Insurance Management System insertClient.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument clientid leads to sql injection. It is possible to initiate the attack remotely. The...

6.5CVSS0.00387EPSS
Exploits1References5
NVD
NVD
added 2025/06/16 6:15 p.m.27 views

CVE-2025-6133

A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /insertagent.php. The manipulation of the argument agentid leads to sql injection. The attack may be launched remotely. The...

9.8CVSS0.00387EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/16 6:0 p.m.33 views

CVE-2025-6133 Projectworlds Life Insurance Management System insertagent.php sql injection

A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /insertagent.php. The manipulation of the argument agentid leads to sql injection. The attack may be launched remotely. The...

6.5CVSS0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/06/16 6:0 p.m.30 views

CVE-2025-6133

Projectworlds Life Insurance Management System 1.0 contains a SQL injection in /insertagent.php via the agent_id parameter. The vulnerability, described as critical, may be exploitable remotely and is supported by publicly disclosed PoCs. Multiple connected sources confirm the issue without a kno...

9.8CVSS7.6AI score0.00387EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/16 12:0 a.m.4 views

PT-2025-25579 · Unknown · Projectworlds Life Insurance Management System

Name of the Vulnerable Software and Affected Versions: Projectworlds Life Insurance Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /insertagent.php. The manipulation of the agent id argument leads to SQL...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/06/16 12:0 a.m.10 views

PT-2025-25582 · Unknown · Projectworlds Life Insurance Management System

Name of the Vulnerable Software and Affected Versions: Projectworlds Life Insurance Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown part of the file /insertClient.php. The manipulation of the client id argument leads to SQL injection. It i...

9.8CVSS6.7AI score0.00387EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/06/16 12:0 a.m.10 views

PT-2025-25584 · Unknown · Projectworlds Life Insurance Management System

Name of the Vulnerable Software and Affected Versions: Projectworlds Life Insurance Management System version 1.0 Description: A critical issue affects the processing of the file "/insertPayment.php". The manipulation of the argument recipt no leads to SQL injection. The attack may be initiated...

9.8CVSS6.9AI score0.00387EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2025/05/23 10:28 a.m.12 views

CVE-2024-7916

A vulnerability classified as problematic was found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addNominee.php of the component Add Nominee Page. The manipulation of the argument Nominee-Client ID leads to cro...

5.4CVSS6.1AI score0.00416EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:21 a.m.12 views

CVE-2024-31502

An issue in Insurance Management System v.1.0.0 and before allows a remote attacker to escalate privileges via a crafted POST request to /admin/core/newstaff...

8.1CVSS7.2AI score0.00591EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.5 views

CVE-2024-31648

Cross Site Scripting XSS in Insurance Management System v1.0, allows remote attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter at /core/newcategory2...

6.1CVSS6.4AI score0.00475EPSS
Exploits1References1
Rows per page
Query Builder