Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2025-9700MEDIUMSourceCodester Online Book Store publisher_list.php sql injectionEPSS 0.4%CVE-2025-10078MEDIUMSourceCodester Online Polling System candidates.php sql injectionEPSS 0.4%CVE-2026-13571MEDIUMSourceCodester Simple Food Ordering System cart.php logic errorEPSS 0.4%CVE-2025-9706MEDIUMSourceCodester Water Billing System edit.php sql injectionEPSS 0.4%CVE-2025-9702MEDIUMSourceCodester Simple Cafe Billing System sales_report.php sql injectionEPSS 0.4%CVE-2025-9704MEDIUMSourceCodester Water Billing System viewbill.php sql injectionEPSS 0.4%CVE-2025-10082MEDIUMSourceCodester Online Polling System manage-admins.php sql injectionEPSS 0.4%CVE-2024-7684MEDIUMSourceCodester Kortex Lite Advocate Office Management System add_act.php cross site scriptingEPSS 0.4%CVE-2024-7683MEDIUMSourceCodester Kortex Lite Advocate Office Management System addcase_stage.php cross site scriptingEPSS 0.4%CVE-2025-13122MEDIUMSourceCodester Patients Waiting Area Queue Management System api_patient_checkin.php getPatientAppointment sql injectionEPSS 0.4%CVE-2022-3714MEDIUMSourceCodester Online Medicine Ordering System sql injectionEPSS 0.4%CVE-2025-11398MEDIUMSourceCodester Hotel and Lodge Management System Profile profile.php unrestricted uploadEPSS 0.4%CVE-2024-7368MEDIUMSourceCodester Simple Realtime Quiz System ajax.php cross site scriptingEPSS 0.4%CVE-2025-11477MEDIUMSourceCodester Wedding Reservation Management System global.php sql injectionEPSS 0.4%CVE-2025-10428MEDIUMSourceCodester Pet Grooming Management Software Setting seo_setting.php unrestricted uploadEPSS 0.4%CVE-2025-12292MEDIUMSourceCodester Point of Sales index.php sql injectionEPSS 0.4%CVE-2024-9323MEDIUMSourceCodester Inventory Management System add_staff.php cross site scriptingEPSS 0.4%CVE-2026-3746MEDIUMSourceCodester Simple Responsive Tourism Website Login Login.php sql injectionEPSS 0.4%CVE-2024-8152MEDIUMSourceCodester QR Code Bookmark System Parameter add-bookmark.php cross site scriptingEPSS 0.4%CVE-2025-11397MEDIUMSourceCodester Hotel and Lodge Management System login.php sql injectionEPSS 0.4%