CVE-2025-6135 | Projectworlds Life Insurance Management System 1.0 /insertNominee.php client_id/nominee_id sql injection

Inserito da Angelo Barbosa | Giu 15, 2025 | CVE

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument client_id/nominee_id leads to sql injection.

This vulnerability was named CVE-2025-6135. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-6135 | Projectworlds Life Insurance Management System 1.0 /insertNominee.php client_id/nominee_id sql injection

Post correlati

CVE-2025-29841 | Microsoft

CVE-2024-1584 | Analytify Plugin up to 5.2.1 on WordPress Google Analytics Tracking ID authorization

CVE-2023-32451 | Dell Display Manager 2.1.1.17 Uninstallation least privilege violation (dsa-2023-182)

CVE-2024-12035 | Chimpstudio CS Framework Plugin up to 6.9 on WordPress wp-config.php cs_widget_file_delete path traversal