CVE-2025-6136 | Projectworlds Life Insurance Management System 1.0 /insertPayment.php recipt_no sql injection

Inserito da Angelo Barbosa | Giu 15, 2025 | CVE

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument recipt_no leads to sql injection.

The identification of this vulnerability is CVE-2025-6136. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-6136 | Projectworlds Life Insurance Management System 1.0 /insertPayment.php recipt_no sql injection

Post correlati

CVE-2024-32103 | Siteimprove Plugin up to 2.0.6 on WordPress cross-site request forgery

CVE-2023-7209 | Uniway Router up to 2.0 Device Reset device_reset.cgi denial of service

CVE-2024-37136 | Dell Path to PowerProtect up to 1.2 exposure of private personal information to an unauthorized actor (dsa-2024-291)

CVE-2024-56002 | Porthas Contact Form, Survey & Form Builder Plugin up to 1.3.9 on WordPress authorization