Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2026-4778MEDIUMSourceCodester Sales and Inventory System HTTP GET Parameter update_category.php sql injectionEPSS 0.3%CVE-2026-4825MEDIUMSourceCodester Sales and Inventory System HTTP GET Parameter update_sales.php sql injectionEPSS 0.3%CVE-2026-10694MEDIUMSourceCodester Online Food Ordering System index.php include file inclusionEPSS 0.3%CVE-2025-11611MEDIUMSourceCodester Simple Inventory System user.php sql injectionEPSS 0.3%CVE-2025-11610MEDIUMSourceCodester Simple Inventory System brand.php sql injectionEPSS 0.3%CVE-2026-3754MEDIUMSourceCodester Sales and Inventory System add_stock.php sql injectionEPSS 0.3%CVE-2026-3753MEDIUMSourceCodester Sales and Inventory System add_sales_print.php sql injectionEPSS 0.3%CVE-2025-11478MEDIUMSourceCodester Farm Management System myCart.php sql injectionEPSS 0.3%CVE-2026-3755MEDIUMSourceCodester Sales and Inventory System POST check_customer_details.php sql injectionEPSS 0.3%CVE-2024-8708MEDIUMSourceCodester Best House Rental Management System categories.php cross site scriptingEPSS 0.3%CVE-2026-3756MEDIUMSourceCodester Sales and Inventory System check_item_details.php sql injectionEPSS 0.3%CVE-2026-3792MEDIUMSourceCodester Sales and Inventory System GET Parameter purchase_invoice.php sql injectionEPSS 0.3%CVE-2026-3790MEDIUMSourceCodester Sales and Inventory System POST Parameter check_supplier_details.php sql injectionEPSS 0.3%CVE-2025-12932MEDIUMSourceCodester Baby Care System admin.php sql injectionEPSS 0.3%CVE-2025-12853MEDIUMSourceCodester Best House Rental Management System admin_class.php delete_house sql injectionEPSS 0.3%CVE-2025-14885MEDIUMSourceCodester Client Database Management System Leads Generation user_leads.php unrestricted uploadEPSS 0.3%CVE-2026-3724MEDIUMSourceCodester Patients Waiting Area Queue Management System checkin.php improper authorizationEPSS 0.3%CVE-2026-3800MEDIUMSourceCodester/janobe Resort Reservation System controller.php doInsert unrestricted uploadEPSS 0.3%CVE-2026-2154MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System Patient Registration registration.php cross site scriptingEPSS 0.3%CVE-2024-12353MEDIUMSourceCodester Phone Contact Manager System User Menu MenuDisplayStart input validationEPSS 0.3%