Projectworlds Security Vulnerabilities (CVEs)
Track 127 security vulnerabilities affecting Projectworlds products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This SQL injection vulnerability in Online Art Gallery Shop 1.0 allows attackers to manipulate database queries through the registration form's fname ...
Mar 2, 2026This vulnerability allows remote attackers to perform administrative operations without authentication in ProjectWorlds Online Time Table Generator 1....
Feb 18, 2026CVE-2026-2136 is a SQL injection vulnerability in projectworlds Online Food Ordering System 1.0 that allows remote attackers to execute arbitrary SQL ...
Feb 8, 2026This vulnerability allows remote attackers to inject malicious scripts via the Message parameter in the /app/sms.php file of projectworlds House Renta...
Jan 30, 2026This vulnerability allows remote attackers to upload arbitrary files through the signup component in House Rental and Property Listing 1.0. Attackers ...
Jan 7, 2026This vulnerability allows attackers to inject malicious scripts via the Name parameter in the /app/complaint.php file of House Rental and Property Lis...
Jan 7, 2026This CVE describes an SQL injection vulnerability in the Advanced Library Management System 1.0 by projectworlds. Attackers can exploit the roll_numbe...
Dec 12, 2025CVE-2025-14570 is a SQL injection vulnerability in Advanced Library Management System 1.0 that allows attackers to execute arbitrary SQL commands via ...
Dec 12, 2025CVE-2025-14210 is an SQL injection vulnerability in Advanced Library Management System 1.0 that allows remote attackers to execute arbitrary SQL comma...
Dec 8, 2025CVE-2025-14211 is a SQL injection vulnerability in Advanced Library Management System 1.0 that allows attackers to manipulate database queries via the...
Dec 8, 2025This CVE describes a SQL injection vulnerability in Advanced Library Management System 1.0's member_search.php file. Attackers can manipulate the roll...
Dec 8, 2025This vulnerability allows remote attackers to upload malicious files via the /add_book.php endpoint in projectworlds can pass software up to version 1...
Nov 24, 2025This SQL injection vulnerability in Advanced Library Management System 1.0 allows attackers to manipulate database queries through the admin_id parame...
Nov 23, 2025This SQL injection vulnerability in Advanced Library Management System 1.0 allows attackers to manipulate database queries through the datefrom/dateto...
Nov 17, 2025This CVE describes a SQL injection vulnerability in the Advanced Library Management System 1.0 by projectworlds. Attackers can exploit the roll_number...
Nov 17, 2025This SQL injection vulnerability in Advanced Library Management System 1.0 allows attackers to manipulate database queries through the roll_number par...
Nov 17, 2025This SQL injection vulnerability in Advanced Library Management System 1.0 allows attackers to manipulate database queries through the book_search.php...
Nov 17, 2025This SQL injection vulnerability in Advanced Library Management System 1.0 allows attackers to manipulate database queries through the Username parame...
Nov 17, 2025CVE-2025-12862 is an unrestricted file upload vulnerability in projectworlds Online Notes Sharing Platform 1.0. Attackers can upload malicious files v...
Nov 7, 2025This SQL injection vulnerability in Projectworlds Online Shopping System 1.0 allows attackers to execute arbitrary SQL commands via the 'keywords' par...
Oct 27, 2025CVE-2025-11604 is a SQL injection vulnerability in projectworlds Online Ordering Food System 1.0 that allows attackers to manipulate database queries ...
Oct 11, 2025This SQL injection vulnerability in Gate Pass Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'fullname' param...
Oct 9, 2025Advanced Library Management System 1.0 contains a SQL injection vulnerability in the view_member.php file through the user_id parameter. Attackers can...
Oct 8, 2025Advanced Library Management System 1.0 contains an unrestricted file upload vulnerability in the edit_book.php file's image parameter. This allows rem...
Oct 8, 2025This vulnerability allows remote attackers to upload arbitrary files to the Projectworlds Online Tours and Travels 1.0 system via the /admin/change-im...
Sep 28, 2025Projectworlds Online Shopping System 1.0 contains a SQL injection vulnerability in the /store/cart_add.php file that allows remote attackers to execut...
Sep 27, 2025CVE-2025-9927 is a SQL injection vulnerability in projectworlds Travel Management System 1.0 that allows attackers to execute arbitrary SQL commands v...
Sep 3, 2025CVE-2025-9926 is a SQL injection vulnerability in the Travel Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via ...
Sep 3, 2025CVE-2025-9924 is an SQL injection vulnerability in Travel Management System 1.0's enquiry.php file that allows attackers to manipulate database querie...
Sep 3, 2025CVE-2025-9052 is an SQL injection vulnerability in projectworlds Travel Management System 1.0 that allows remote attackers to execute arbitrary SQL co...
Aug 15, 2025CVE-2025-9050 is an SQL injection vulnerability in projectworlds Travel Management System 1.0 that allows remote attackers to execute arbitrary SQL co...
Aug 15, 2025CVE-2025-9047 is a SQL injection vulnerability in Projectworlds Visitor Management System 1.0 that allows remote attackers to execute arbitrary SQL co...
Aug 15, 2025CVE-2025-8948 is an SQL injection vulnerability in Projectworlds Visitor Management System 1.0 that allows remote attackers to execute arbitrary SQL c...
Aug 14, 2025CVE-2025-8946 is an SQL injection vulnerability in the Online Notes Sharing Platform 1.0 login.php file that allows attackers to manipulate database q...
Aug 14, 2025This critical SQL injection vulnerability in projectworlds Online Admission System 1.0 allows remote attackers to execute arbitrary SQL commands via t...
Aug 3, 2025This critical SQL injection vulnerability in projectworlds Online Admission System 1.0 allows attackers to manipulate database queries through the a_i...
Aug 2, 2025CVE-2025-8436 is a critical SQL injection vulnerability in projectworlds Online Admission System 1.0 that allows remote attackers to execute arbitrary...
Aug 1, 2025CVE-2025-8338 is a critical SQL injection vulnerability in projectworlds Online Admission System 1.0 that allows remote attackers to execute arbitrary...
Jul 31, 2025This critical SQL injection vulnerability in Projectworlds Life Insurance Management System 1.0 allows attackers to manipulate database queries throug...
Jun 16, 2025This critical SQL injection vulnerability in Projectworlds Life Insurance Management System 1.0 allows attackers to execute arbitrary SQL commands via...
Jun 16, 2025This critical SQL injection vulnerability in Online Time Table Generator 1.0 allows remote attackers to execute arbitrary SQL commands via the 'e' par...
May 20, 2025CVE-2025-5004 is a critical SQL injection vulnerability in projectworlds Online Time Table Generator 1.0 that allows remote attackers to execute arbit...
May 20, 2025CVE-2025-4936 is a critical SQL injection vulnerability in projectworlds Online Food Ordering System 1.0 that allows remote attackers to execute arbit...
May 19, 2025A critical SQL injection vulnerability exists in the Online Lawyer Management System 1.0, specifically in the lawyer_registation.php file's email para...
May 19, 2025CVE-2025-4837 is a critical SQL injection vulnerability in Projectworlds Student Project Allocation System 1.0 that allows remote attackers to execute...
May 17, 2025CVE-2025-4739 is a critical SQL injection vulnerability in ProjectWorlds Hospital Database Management System 1.0 that allows remote attackers to execu...
May 16, 2025This critical SQL injection vulnerability in Projectworlds Online Examination System 1.0 allows attackers to manipulate database queries through the V...
May 15, 2025A critical SQL injection vulnerability in Project Worlds Student Project Allocation System 1.0 allows remote attackers to execute arbitrary SQL comman...
May 9, 2025A critical SQL injection vulnerability exists in Project Worlds Car Rental Project 1.0, specifically in the /admin/approve.php file's ID parameter. Th...
May 9, 2025CVE-2025-4058 is a critical SQL injection vulnerability in Projectworlds Online Examination System 1.0 that allows remote attackers to execute arbitra...
Apr 29, 2025Why Monitor Projectworlds Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 127+ known vulnerabilities affecting Projectworlds products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Projectworlds packages in under 60 seconds. No agents required - completely agentless scanning that works across Projectworlds deployments.
Free vulnerability database: Access detailed information about every Projectworlds CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Projectworlds CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
