Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

projectworlds — Vulnerabilities & Security Advisories 101

Browse all 101 CVE security advisories affecting projectworlds. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Projectworlds operates as a provider of enterprise resource planning and business management software, primarily targeting small to medium-sized enterprises for inventory, sales, and accounting automation. Security audits have identified a significant volume of vulnerabilities, with 101 Common Vulnerabilities and Exposures currently documented. The most prevalent issues involve remote code execution and cross-site scripting, often stemming from inadequate input validation in web interfaces. Additionally, the platform has historically suffered from broken access control flaws, allowing unauthorized privilege escalation and data exposure. These weaknesses suggest systemic gaps in secure coding practices and rigorous penetration testing protocols. While no single catastrophic breach has been widely publicized, the high count of active CVEs indicates persistent exposure to automated exploitation tools. Organizations relying on this software must prioritize immediate patching and network segmentation to mitigate the risk of compromise, given the consistent pattern of critical severity ratings in recent disclosures.

Top products by projectworlds: Advanced Library Management System Life Insurance Management System Travel Management System Online Doctor Appointment Booking System Online Admission System Online Art Gallery Shop Visitor Management System Online Hotel Booking Expense Management System Online Examination System Online Lawyer Management System Online Time Table Generator House Rental and Property Listing Car Rental System Car Rental Project Lawyer Management System Gate Pass Management System Online Shopping System Online Notes Sharing Platform Online Food Ordering System Apartment Visitors Management System Online Tours and Travels Online Ordering Food System can pass malicious payloads Responsive E-Learning System Online Notes Sharing System Student Project Allocation System Hospital Database Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-8436 projectworlds Online Admission System viewdoc.php sql injection — Online Admission SystemCWE-89 7.3 High2025-08-01
CVE-2025-8338 projectworlds Online Admission System adminac.php sql injection — Online Admission SystemCWE-89 7.3 High2025-07-30
CVE-2025-8247 Projectworlds Online Admission System admin.php sql injection — Online Admission SystemCWE-89 6.3 Medium2025-07-27
CVE-2025-6136 Projectworlds Life Insurance Management System insertPayment.php sql injection — Life Insurance Management SystemCWE-89 6.3 Medium2025-06-16
CVE-2025-6135 Projectworlds Life Insurance Management System insertNominee.php sql injection — Life Insurance Management SystemCWE-89 6.3 Medium2025-06-16
CVE-2025-6134 Projectworlds Life Insurance Management System insertClient.php sql injection — Life Insurance Management SystemCWE-89 6.3 Medium2025-06-16
CVE-2025-6133 Projectworlds Life Insurance Management System insertagent.php sql injection — Life Insurance Management SystemCWE-89 6.3 Medium2025-06-16
CVE-2025-5213 projectworlds Responsive E-Learning System delete_file.php sql injection — Responsive E-Learning SystemCWE-89 7.3 High2025-05-26
CVE-2025-5008 projectworlds Online Time Table Generator add_teacher.php sql injection — Online Time Table GeneratorCWE-89 7.3 High2025-05-20
CVE-2025-5004 projectworlds Online Time Table Generator add_course.php sql injection — Online Time Table GeneratorCWE-89 7.3 High2025-05-20
CVE-2025-5003 projectworlds Online Time Table Generator semester_ajax.php sql injection — Online Time Table GeneratorCWE-89 7.3 High2025-05-20
CVE-2025-4936 projectworlds Online Food Ordering System admin-page.php sql injection — Online Food Ordering SystemCWE-89 7.3 High2025-05-19
CVE-2025-4932 projectworlds Online Lawyer Management System lawyer_registation.php sql injection — Online Lawyer Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4931 projectworlds Online Lawyer Management System user_registation.php sql injection — Online Lawyer Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4928 projectworlds Online Lawyer Management System save_lawyer_edit_profile.php sql injection — Online Lawyer Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4837 projectworlds Student Project Allocation System make_group_sql.php sql injection — Student Project Allocation SystemCWE-89 7.3 High2025-05-17
CVE-2025-4836 Projectworlds Life Insurance Management System deleteAgent.php sql injection — Life Insurance Management SystemCWE-89 7.3 High2025-05-17
CVE-2025-4739 projectworlds Hospital Database Management System medicines_info.php sql injection — Hospital Database Management SystemCWE-89 7.3 High2025-05-16
CVE-2025-4706 projectworlds Online Examination System Procedure3b_yearwiseVisit.php sql injection — Online Examination SystemCWE-89 7.3 High2025-05-15
CVE-2025-4058 Projectworlds Online Examination System Bloodgroop_process.php sql injection — Online Examination SystemCWE-89 7.3 High2025-04-29
CVE-2025-4034 projectworlds Online Examination System inser_doc_process.php sql injection — Online Examination SystemCWE-89 7.3 High2025-04-28
CVE-2025-3186 projectworlds Online Doctor Appointment Booking System invoice.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3185 projectworlds Online Doctor Appointment Booking System patientupdateprofile.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3184 projectworlds Online Doctor Appointment Booking System profile.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3183 projectworlds Online Doctor Appointment Booking System patientupdateprofile.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3182 projectworlds Online Doctor Appointment Booking System getschedule.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3181 projectworlds Online Doctor Appointment Booking System appointment.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3180 projectworlds Online Doctor Appointment Booking System deleteschedule.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3179 projectworlds Online Doctor Appointment Booking System deletepatient.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03
CVE-2025-3178 projectworlds Online Doctor Appointment Booking System deleteappointment.php sql injection — Online Doctor Appointment Booking SystemCWE-89 7.3 High2025-04-03

This page lists every published CVE security advisory associated with projectworlds. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.