Projectworlds Life Insurance Management System vulnerabilities
14 known vulnerabilities affecting projectworlds/life_insurance_management_system.
Total CVEs
14
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH1
Vulnerabilities
Page 1 of 1
CVE-2024-36597P3HIGHCVSS 8.8PoCv1.02024-06-14
CVE-2024-36597 [HIGH] CWE-89 CVE-2024-36597: Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the client_id parameter
Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the client_id parameter at clientStatus.php.
nvd
CVE-2025-2064P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2064 [CRITICAL] CWE-74 CVE-2025-2064: A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Ma
A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file /deletePayment.php. The manipulation of the argument recipt_no leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the publ
nvd
CVE-2025-6134P3CRITICALCVSS 9.8v1.02025-06-16
CVE-2025-6134 [CRITICAL] CWE-74 CVE-2025-6134: A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classif
A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument client_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used
nvd
CVE-2024-10734P3CRITICALCVSS 9.8v1.02024-11-03
CVE-2024-10734 [CRITICAL] CWE-89 CVE-2024-10734: A vulnerability was found in Project Worlds Life Insurance Management System 1.0. It has been classi
A vulnerability was found in Project Worlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /editPayment.php. The manipulation of the argument recipt_no leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be us
nvd
CVE-2025-2065P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2065 [CRITICAL] CWE-74 CVE-2025-2065: A vulnerability, which was classified as critical, was found in projectworlds Life Insurance Managem
A vulnerability, which was classified as critical, was found in projectworlds Life Insurance Management System 1.0. This affects an unknown part of the file /editAgent.php. The manipulation of the argument agent_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2025-2067P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2067 [CRITICAL] CWE-74 CVE-2025-2067: A vulnerability was found in projectworlds Life Insurance Management System 1.0 and classified as cr
A vulnerability was found in projectworlds Life Insurance Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /search.php. The manipulation of the argument key leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2025-2066P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2066 [CRITICAL] CWE-74 CVE-2025-2066: A vulnerability has been found in projectworlds Life Insurance Management System 1.0 and classified
A vulnerability has been found in projectworlds Life Insurance Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /updateAgent.php. The manipulation of the argument agent_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2025-4836P3CRITICALCVSS 9.8v1.02025-05-17
CVE-2025-4836 [CRITICAL] CWE-74 CVE-2025-4836: A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated a
A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /deleteAgent.php. The manipulation of the argument agent_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may b
nvd
CVE-2025-6135P3CRITICALCVSS 9.8v1.02025-06-16
CVE-2025-6135 [CRITICAL] CWE-74 CVE-2025-6135: A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declare
A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument client_id/nominee_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and
nvd
CVE-2025-6133P3CRITICALCVSS 9.8v1.02025-06-16
CVE-2025-6133 [CRITICAL] CWE-74 CVE-2025-6133: A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as cr
A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /insertagent.php. The manipulation of the argument agent_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be us
nvd
CVE-2024-10735P3CRITICALCVSS 9.8v1.02024-11-03
CVE-2024-10735 [CRITICAL] CWE-89 CVE-2024-10735: A vulnerability was found in Project Worlds Life Insurance Management System 1.0. It has been declar
A vulnerability was found in Project Worlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /editNominee.php. The manipulation of the argument nominee_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be us
nvd
CVE-2025-2063P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2063 [CRITICAL] CWE-74 CVE-2025-2063: A vulnerability classified as critical was found in projectworlds Life Insurance Management System 1
A vulnerability classified as critical was found in projectworlds Life Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /deleteNominee.php. The manipulation of the argument nominee_id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may
nvd
CVE-2025-6136P3CRITICALCVSS 9.8v1.02025-06-16
CVE-2025-6136 [CRITICAL] CWE-74 CVE-2025-6136: A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated a
A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument recipt_no leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used
nvd
CVE-2025-2062P3CRITICALCVSS 9.8v1.02025-03-07
CVE-2025-2062 [CRITICAL] CWE-74 CVE-2025-2062: A vulnerability classified as critical has been found in projectworlds Life Insurance Management Sys
A vulnerability classified as critical has been found in projectworlds Life Insurance Management System 1.0. Affected is an unknown function of the file /clientStatus.php. The manipulation of the argument client_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
nvd