Shodan
Vulnerabilities
Vulnerable Software
Projectworlds:  Security Vulnerabilities
CVE-2021-43629
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2021-12-22
CVE-2021-43630
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web server.
CVSS Score
8.8
EPSS Score
0.014
Published
2021-12-22
CVE-2021-43631
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2021-12-22
CVE-2020-29205
XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field
CVSS Score
6.1
EPSS Score
0.006
Published
2021-05-17
CVE-2020-19108
SQL Injection vulnerability in Online Book Store v1.0 via the pubid parameter to bookPerPub.php, which could let a remote malicious user execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.006
Published
2021-05-06
CVE-2020-19109
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_edit.php, which could let a remote malicious user execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.006
Published
2021-05-06
CVE-2020-19110
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to book.php parameter, which could let a remote malicious user execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.006
Published
2021-05-06
CVE-2020-19111
Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-05-06
CVE-2020-19112
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_delete.php, which could let a remote malicious user execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.006
Published
2021-05-06
CVE-2020-19113
Arbitrary File Upload vulnerability in Online Book Store v1.0 in admin_add.php, which may lead to remote code execution.
CVSS Score
9.8
EPSS Score
0.026
Published
2021-05-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved