Lucene search
K

672 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:21 a.m.10 views

CVE-2024-51326

SQL Injection vulnerability in projectworlds Travel management System v.1.0 allows a remote attacker to execute arbitrary code via the 't2' parameter in deletesubcategory.php...

7.5CVSS8.8AI score0.00887EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:19 a.m.7 views

CVE-2024-51060

Projectworlds Online Admission System v1 is vulnerable to SQL Injection in index.php via the 'aid' parameter...

9.1CVSS8.1AI score0.00449EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:18 p.m.8 views

CVE-2025-5008

A vulnerability was found in projectworlds Online Time Table Generator 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addteacher.php. The manipulation of the argument e leads to sql injection. The attack may be launched remotely. The...

9.8CVSS7.7AI score0.00421EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:2 p.m.7 views

CVE-2022-33880

hms-staff.php in Projectworlds Hospital Management System Mini-Project through 2018-06-17 allows SQL injection via the type parameter...

9.8CVSS8AI score0.00692EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:14 p.m.9 views

CVE-2025-5003

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as critical. This vulnerability affects unknown code of the file /semesterajax.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS7.6AI score0.00421EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:35 p.m.7 views

CVE-2021-43630

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in addpatient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web...

8.8CVSS8.3AI score0.02003EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 7:44 p.m.6 views

CVE-2021-43631

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointmentno parameter in payment.php...

9.8CVSS7.9AI score0.0113EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 6:50 p.m.7 views

CVE-2021-43156

In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admindelete.php allows a remote attacker to delete any book...

6.5CVSS7.1AI score0.00527EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.5 views

CVE-2020-25408

A Cross-Site Request Forgery CSRF vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data...

6.5CVSS7.1AI score0.00781EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.10 views

CVE-2020-29168

SQL Injection vulnerability in Projectworlds Online Doctor Appointment Booking System, allows attackers to gain sensitive information via the q parameter to the getuser.php endpoint...

9.8CVSS7.9AI score0.01244EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.7 views

CVE-2020-25411

Projectworlds Online Examination System 1.0 is vulnerable to CSRF, which allows a remote attacker to delete the existing user...

6.5CVSS6.9AI score0.00658EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/20 11:18 p.m.16 views

CVE-2025-4836

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /deleteAgent.php. The manipulation of the argument agentid leads to sql injection. The attack may be launched remotely...

9.8CVSS7.3AI score0.00415EPSS
Exploits1
NVD
NVD
added 2025/05/20 11:15 p.m.21 views

CVE-2025-5008

A vulnerability was found in projectworlds Online Time Table Generator 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addteacher.php. The manipulation of the argument e leads to sql injection. The attack may be launched remotely. The...

9.8CVSS0.00421EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/05/20 11:0 p.m.5 views

CVE-2025-5008 projectworlds Online Time Table Generator add_teacher.php sql injection

A vulnerability was found in projectworlds Online Time Table Generator 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addteacher.php. The manipulation of the argument e leads to sql injection. The attack may be launched remotely. The...

7.5CVSS7.5AI score0.00421EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/05/20 10:31 p.m.7 views

CVE-2025-5004 projectworlds Online Time Table Generator add_course.php sql injection

A vulnerability was found in projectworlds Online Time Table Generator 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/addcourse.php. The manipulation of the argument c/subname leads to sql injection. The attack may be initiated remotely. The exploit...

7.5CVSS7.4AI score0.00421EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/20 10:31 p.m.21 views

CVE-2025-5004 projectworlds Online Time Table Generator add_course.php sql injection

A vulnerability was found in projectworlds Online Time Table Generator 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/addcourse.php. The manipulation of the argument c/subname leads to sql injection. The attack may be initiated remotely. The exploit...

7.5CVSS0.00421EPSS
Exploits1References4
OSV
OSV
added 2025/05/20 10:15 p.m.4 views

CVE-2025-5003

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as critical. This vulnerability affects unknown code of the file /semesterajax.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.8AI score0.00421EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/20 10:0 p.m.22 views

CVE-2025-5003 projectworlds Online Time Table Generator semester_ajax.php sql injection

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as critical. This vulnerability affects unknown code of the file /semesterajax.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00421EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/05/20 10:0 p.m.8 views

CVE-2025-5003 projectworlds Online Time Table Generator semester_ajax.php sql injection

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as critical. This vulnerability affects unknown code of the file /semesterajax.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS7.5AI score0.00421EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/05/20 12:0 a.m.5 views

Projectworlds Online Time Table Generator SQL注入漏洞

Projectworlds Online Time Table Generator is an online time table generator from Projectworlds India. Projectworlds Online Time Table Generator version 1.0 suffers from a SQL injection vulnerability that stems from improper handling of parameter e in file /admin/addteacher.php, which could lead t...

9.8CVSS7.8AI score0.00421EPSS
Exploits1References5
Rows per page
Query Builder