Projectworlds: community verdicts
3 notable / known-exploited Projectworlds CVEs the community has triaged.
ⓘ Not an exhaustive list: we focus on the findings that matter (exploited / notable). For every Projectworlds CVE, see NVD ↗.
- CVE-2024-22922CRIT 9.8Real · low riskEPSS 1%
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
- CVE-2024-22983HIGH 8.1Real · low riskEPSS 1%
SQL injection vulnerability in Projectworlds Visitor Management System in PHP v.1.0 allows a remote attacker to escalate privileges via the name parameter in the myform.php endpoint.
- CVE-2024-51060CRIT 9.1Real · low riskEPSS 0%
Projectworlds Online Admission System v1 is vulnerable to SQL Injection in index.php via the 'a_id' parameter.