Vulnerabilities in code-projects

1,281 results

Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2025-12283MEDIUMcode-projects Client Details System authorizationEPSS 0.4%CVE-2025-14619MEDIUMcode-projects Student File Management System login_query.php sql injectionEPSS 0.4%CVE-2025-8273MEDIUMcode-projects Exam Form Submission update_s8.php sql injectionEPSS 0.4%CVE-2025-8272MEDIUMcode-projects Exam Form Submission update_fst.php sql injectionEPSS 0.4%CVE-2025-9740MEDIUMcode-projects Human Resource Integrated System log_query.php sql injectionEPSS 0.4%CVE-2025-9743MEDIUMcode-projects Human Resource Integrated System login_attendance2.php sql injectionEPSS 0.4%CVE-2025-9733MEDIUMcode-projects Human Resource Integrated System login_timeee.php sql injectionEPSS 0.4%CVE-2025-8270MEDIUMcode-projects Exam Form Submission delete_s2.php sql injectionEPSS 0.4%CVE-2026-2223MEDIUMcode-projects Online Reviewer System index.php sql injectionEPSS 0.4%CVE-2025-8271MEDIUMcode-projects Exam Form Submission delete_s3.php sql injectionEPSS 0.4%CVE-2025-8340MEDIUMcode-projects Intern Membership Management System Error Message fill_details.php cross site scriptingEPSS 0.4%CVE-2026-4900MEDIUMcode-projects Online Food Ordering System localhost.sql privilege escalationEPSS 0.4%CVE-2025-11424MEDIUMcode-projects Web-Based Inventory and POS System login.php sql injectionEPSS 0.4%CVE-2025-11608MEDIUMcode-projects E-Banking System POST Parameter register.php sql injectionEPSS 0.4%CVE-2025-11556MEDIUMcode-projects Simple Leave Manager user.php sql injectionEPSS 0.4%CVE-2025-11558MEDIUMcode-projects E-Commerce Website user_index_search.php sql injectionEPSS 0.4%CVE-2025-12309MEDIUMcode-projects Nero Social Networking Site friendprofile.php sql injectionEPSS 0.4%CVE-2025-11513MEDIUMcode-projects E-Commerce Website supplier_update.php sql injectionEPSS 0.4%CVE-2025-12307MEDIUMcode-projects Nero Social Networking Site addfriend.php sql injectionEPSS 0.4%CVE-2025-11596MEDIUMcode-projects E-Commerce Website delete_order_details.php sql injectionEPSS 0.4%

← previouspage 22 / 65next →