2 matches found
CVE-2025-11557
The CVE-2025-11557 entry affects ProjectWorlds Gate Pass Management System v1.0. The vulnerability lies in handling of the fullname parameter in /add-pass.php, enabling SQL injection. Multiple connected sources corroborate remote-exploit potential and public disclosure. Documented impacts indicat...
CVE-2025-12227
Projectworlds Gate Pass Management System 1.0 is affected by a cross-site scripting vulnerability in an unknown function within /add-pass.php. The issue can be exploited remotely, with public disclosure of the exploit noted in multiple feeds. The root cause is described as an unknown function in ...