GCVE - cpe:2.3:a:projectworlds:online_examination

Approved changes feed: RSS · Atom

cpe:2.3:a:projectworlds:online_examination_system:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Projectworlds (`1c49ba31-3767-5ff6-9610-c6dcb2aee835`)
Product	Online Examination System (`495971d3-90de-585b-ad4e-4d95e46556d6`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/projectworldsofficial/online-examination-systen-in-php`	purl2cpe	2026-06-01 10:16:18.483826

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-4706`	vulnerable	2026-06-03 15:01:48.596236	projectworlds Online Examination System Procedure3b_yearwiseVisit.php sql injection HIGH (7.3) A vulnerability was found in projectworlds Online Examination System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Procedure3b_yearwiseVisit.php. The manipulation of the argument Visit_year leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Published: 2025-05-15T16:31:04.462Z Updated: 2025-05-15T19:48:51.315Z Open on db.gcve.eu Reference links https://vuldb.com/?id.309004 https://vuldb.com/?ctiid.309004 https://vuldb.com/?submit.567923 https://github.com/Welhelm666/666/issues/2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-4058`	vulnerable	2026-06-03 15:01:46.661541	Projectworlds Online Examination System Bloodgroop_process.php sql injection HIGH (7.3) A vulnerability classified as critical has been found in Projectworlds Online Examination System 1.0. This affects an unknown part of the file /Bloodgroop_process.php. The manipulation of the argument Pat_BloodGroup1 leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2025-04-29T11:31:03.566Z Updated: 2025-04-29T13:20:17.241Z Open on db.gcve.eu Reference links https://vuldb.com/?id.306495 https://vuldb.com/?ctiid.306495 https://vuldb.com/?submit.559354 https://github.com/hhhanxx/attack/issues/2#issue-2998883562	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-4034`	vulnerable	2026-06-03 15:01:46.570361	projectworlds Online Examination System inser_doc_process.php sql injection HIGH (7.3) A vulnerability classified as critical was found in projectworlds Online Examination System 1.0. Affected by this vulnerability is an unknown functionality of the file /inser_doc_process.php. The manipulation of the argument Doc_ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-04-28T19:31:03.828Z Updated: 2025-04-28T21:54:07.063Z Open on db.gcve.eu Reference links https://vuldb.com/?id.306397 https://vuldb.com/?ctiid.306397 https://vuldb.com/?submit.559297 https://github.com/hhhanxx/attack/issues/1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Online Examination System

PURL mappings

Vulnerability references

Contribute