Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2026-7264MEDIUMSourceCodester Pizzafy Ecommerce System ajax.php get_cart_items sql injectionEPSS 0.3%CVE-2025-6475MEDIUMSourceCodester Student Result Management System Manage Students Module manage_students cross site scriptingEPSS 0.3%CVE-2026-4569MEDIUMSourceCodester Sales and Inventory System HTTP POST Request view_category.php sql injectionEPSS 0.3%CVE-2025-5297MEDIUMSourceCodester Computer Store System main.c Add stack-based overflowEPSS 0.2%CVE-2026-10248MEDIUMSourceCodester Pharmacy Sales and Inventory System Supplier Creation export create_supplier csv injectionEPSS 0.2%CVE-2026-11520MEDIUMSourceCodester Inventory System header.php cross site scriptingEPSS 0.2%CVE-2026-9485MEDIUMSourceCodester Student Grades Management System students.php cross site scriptingEPSS 0.2%CVE-2026-7447MEDIUMSourceCodester Pet Grooming Management Software update_customer.php sql injectionEPSS 0.2%CVE-2026-5811MEDIUMSourceCodester Online Food Ordering System POST Parameter Actions.php save_product logic errorEPSS 0.2%CVE-2026-4572MEDIUMSourceCodester Sales and Inventory System HTTP POST Request view_product.php sql injectionEPSS 0.2%CVE-2026-4777MEDIUMSourceCodester Sales and Inventory System POST Parameter view_supplier.php sql injectionEPSS 0.2%CVE-2026-4571MEDIUMSourceCodester Sales and Inventory System HTTP POST Request view_payments.php sql injectionEPSS 0.2%CVE-2026-7394MEDIUMSourceCodester Pizzafy Ecommerce System GET Parameter view_order.php sql injectionEPSS 0.2%CVE-2026-10624MEDIUMSourceCodester Human Resource Management Employee View detailview.php resource injectionEPSS 0.2%CVE-2026-9583MEDIUMSourceCodester CET Automated Grading System with AI Predictive Analytics SQL index.php information exposureEPSS 0.2%CVE-2025-5984MEDIUMSourceCodester Online Student Clearance System add-fee.php cross site scriptingEPSS 0.2%CVE-2026-7265MEDIUMSourceCodester Pizzafy Ecommerce System index.php category sql injectionEPSS 0.2%CVE-2025-1961MEDIUMSourceCodester Best Church Management Software web_crud.php sql injectionEPSS 0.2%CVE-2026-5812MEDIUMSourceCodester Pharmacy Product Management System POST Parameter add-sales.php logic errorEPSS 0.2%CVE-2026-5810MEDIUMSourceCodester Sales and Inventory System GET Parameter delete.php cross site scriptingEPSS 0.2%