GCVE - cpe:2.3:a:projectworlds_pvt._limited:online_examination

Approved changes feed: RSS · Atom

cpe:2.3:a:projectworlds_pvt._limited:online_examination_system:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Projectworlds Pvt. Limited (`8e478e47-7374-562d-9dd8-dec161a8c34d`)
Product	Online Examination System (`be7be36c-a463-51de-aa95-e5ebcf54e203`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-45203`	vulnerable	2026-06-08 06:12:42.188003	Online Examination System v1.0 - Multiple Open Redirects MEDIUM (6.1) Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the login.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL. Published: 2023-11-01T22:11:49.439Z Updated: 2024-09-05T14:36:18.483Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/uchida https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45202`	vulnerable	2026-06-08 06:12:42.187647	Online Examination System v1.0 - Multiple Open Redirects MEDIUM (6.1) Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the feed.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL. Published: 2023-11-01T22:02:45.250Z Updated: 2024-09-05T14:36:41.811Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/uchida https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45201`	vulnerable	2026-06-08 06:12:42.187118	Online Examination System v1.0 - Multiple Open Redirects MEDIUM (6.1) Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the admin.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL. Published: 2023-11-01T21:53:07.852Z Updated: 2024-09-05T14:37:05.731Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/uchida https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45121`	vulnerable	2026-06-08 06:12:41.984725	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'desc' parameter of the /update.php?q=addquiz resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T16:23:47.795Z Updated: 2025-05-19T14:11:21.801Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45120`	vulnerable	2026-06-08 06:12:41.984242	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'qid' parameter of the /update.php?q=quiz&step=2 resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T16:21:38.806Z Updated: 2025-05-19T14:11:02.286Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45119`	vulnerable	2026-06-08 06:12:41.983772	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'n' parameter of the /update.php?q=quiz resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T16:03:38.226Z Updated: 2025-05-19T14:10:27.422Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45118`	vulnerable	2026-06-08 06:12:41.983361	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'fdid' parameter of the /update.php resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T15:51:50.440Z Updated: 2025-05-19T14:10:01.595Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45117`	vulnerable	2026-06-08 06:12:41.983057	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'eid' parameter of the /update.php?q=rmquiz resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T15:47:00.234Z Updated: 2025-05-19T14:09:43.559Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45116`	vulnerable	2026-06-08 06:12:41.982676	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'demail' parameter of the /update.php resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T15:42:37.992Z Updated: 2025-05-19T14:09:12.616Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45115`	vulnerable	2026-06-08 06:12:41.980837	Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi) HIGH (8.8) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'ch' parameter of the /update.php?q=addqns resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-12-21T15:36:52.752Z Updated: 2025-05-21T14:10:51.475Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/argerich/ https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-45111`	vulnerable	2026-06-08 06:12:41.979383	Online Examination System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) CRITICAL (9.8) Online Examination System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'email' parameter of the feed.php resource does not validate the characters received and they are sent unfiltered to the database. Published: 2023-11-02T01:42:20.337Z Updated: 2024-09-05T19:17:07.135Z Open on db.gcve.eu Reference links https://fluidattacks.com/advisories/pires https://projectworlds.in/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Online Examination System

PURL mappings

Vulnerability references

Contribute