Vulnerabilities in code-projects

1,282 results

Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2024-12949MEDIUMcode-projects Travel Management System package.php sql injectionEPSS 0.4%CVE-2026-2166MEDIUMcode-projects Online Reviewer System Login index.php sql injectionEPSS 0.4%CVE-2025-6295MEDIUMcode-projects Hostel Management System allocated_rooms.php sql injectionEPSS 0.4%CVE-2025-6293MEDIUMcode-projects Hostel Management System contact_manager.php sql injectionEPSS 0.4%CVE-2025-6294MEDIUMcode-projects Hostel Management System contact.php sql injectionEPSS 0.4%CVE-2025-6296MEDIUMcode-projects Hostel Management System empty_rooms.php sql injectionEPSS 0.4%CVE-2025-5710MEDIUMcode-projects Real Estate Property Management System InsertState.php sql injectionEPSS 0.4%CVE-2025-5711MEDIUMcode-projects Real Estate Property Management System InsertCity.php sql injectionEPSS 0.4%CVE-2025-0198MEDIUMcode-projects Point of Sales and Inventory Management System search_result.php sql injectionEPSS 0.4%CVE-2025-0199MEDIUMcode-projects Point of Sales and Inventory Management System minus_cart.php sql injectionEPSS 0.4%CVE-2025-5705MEDIUMcode-projects Real Estate Property Management System Property.php sql injectionEPSS 0.4%CVE-2025-0201MEDIUMcode-projects Point of Sales and Inventory Management System update_account.php sql injectionEPSS 0.4%CVE-2025-0197MEDIUMcode-projects Point of Sales and Inventory Management System search.php sql injectionEPSS 0.4%CVE-2025-0195MEDIUMcode-projects Point of Sales and Inventory Management System del_product.php sql injectionEPSS 0.4%CVE-2025-5709MEDIUMcode-projects Real Estate Property Management System InsertCategory.php sql injectionEPSS 0.4%CVE-2025-0196MEDIUMcode-projects Point of Sales and Inventory Management System plist.php sql injectionEPSS 0.4%CVE-2025-0174MEDIUMcode-projects Point of Sales and Inventory Management System Parameter search_result2.php sql injectionEPSS 0.4%CVE-2025-15183MEDIUMcode-projects Refugee Food Management System viewtakenfd.php sql injectionEPSS 0.4%CVE-2025-15243MEDIUMcode-projects Simple Stock System login.php sql injectionEPSS 0.4%CVE-2024-9316MEDIUMcode-projects Blood Bank Management System B+.php sql injectionEPSS 0.4%

← previouspage 25 / 65next →