Projectworlds Asset Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Projectworlds Asset Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-43013 — CVSS 9.8 (critical): Asset Management System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'email' parameter of index.php page…
CVE-2023-43014 — CVSS 8.8 (high): Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'first_name' and 'last_name' parameters…