A security vulnerability has been officially documented in Projectworlds’ Online Shopping System in PHP. The Japan Vulnerability Notes (JVN) database has assigned the identifier JVNDB-2025-017790 to this issue, providing a formal record of the finding.

Vulnerability Details

The identified flaw is classified as an injection vulnerability. This vulnerability exists within the Online Shopping System software developed by Projectworlds. The system in question is the version built using PHP. The report specifies that the software is susceptible to injection.

Official Identification and Tracking

The public disclosure of this vulnerability is managed under the JVN identifier JVNDB-2025-017790. This reference number is used by security researchers and system administrators to track the specific details, status, and any potential updates regarding the security flaw within the national vulnerability database of Japan.

Source: http://vrda.jpcert.or.jp/feed/ja/JVNiPedia_JVNDB-2025-017790_AD_1.html