Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Project Worlds — Vulnerabilities & Security Advisories 33

Browse all 33 CVE security advisories affecting Project Worlds. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Project Worlds operates as a comprehensive enterprise resource planning and business management suite, primarily serving manufacturing, distribution, and retail sectors by integrating financial, supply chain, and customer relationship management functions. Despite its widespread adoption in critical business operations, the platform has historically exhibited significant security deficiencies, evidenced by thirty-three recorded Common Vulnerabilities and Exposures. These flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access control mechanisms. While no single catastrophic data breach has been publicly attributed solely to Project Worlds, the high volume of exploitable issues suggests systemic architectural weaknesses. Security researchers frequently highlight the software’s susceptibility to authenticated attacks, urging administrators to prioritize immediate patching and strict network segmentation to mitigate the risk of unauthorized system compromise and data exfiltration.

Top products by Project Worlds: Online Time Table Generator Online Lawyer Management System Student Project Allocation System Simple Web-Based Chat Application Life Insurance Management System Car Rental Project Lawyer Management System Visitor Management System Online Admission System Free Download Online Shopping System
CVE IDTitleCVSSSeverityPublished
CVE-2024-0650 Project Worlds Visitor Management System URL dataset.php cross site scripting — Visitor Management SystemCWE-79 4.3 Medium2024-01-17
CVE-2024-0498 Project Worlds Lawyer Management System searchLawyer.php sql injection — Lawyer Management SystemCWE-89 6.3 Medium2024-01-13
CVE-2024-0266 Project Worlds Online Lawyer Management System User Registration cross site scripting — Online Lawyer Management SystemCWE-79 4.3 Medium2024-01-07

This page lists every published CVE security advisory associated with Project Worlds. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.