Vulnerabilities in code-projects

1,282 results
Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2024-9316MEDIUMcode-projects Blood Bank Management System B+.php sql injectionEPSS 0.4%CVE-2025-11668MEDIUMcode-projects Automated Voting System update_user.php sql injectionEPSS 0.4%CVE-2025-9742MEDIUMcode-projects Human Resource Integrated System login.php sql injectionEPSS 0.4%CVE-2025-8921MEDIUMcode-projects Job Diary user-apply.php sql injectionEPSS 0.4%CVE-2024-8566MEDIUMcode-projects Online Shop Store settings.php cross site scriptingEPSS 0.4%CVE-2024-9322MEDIUMcode-projects Supply Chain Management edit_manufacturer.php sql injectionEPSS 0.4%CVE-2024-10170MEDIUMcode-projects Hospital Management System get_doctor.php sql injectionEPSS 0.4%CVE-2026-0546MEDIUMcode-projects Content Management System search.php sql injectionEPSS 0.4%CVE-2025-8923MEDIUMcode-projects Job Diary edit-details.php sql injectionEPSS 0.4%CVE-2025-8922MEDIUMcode-projects Job Diary admin-inbox.php sql injectionEPSS 0.4%CVE-2025-3685MEDIUMcode-projects Patient Record Management System edit_fpatient.php sql injectionEPSS 0.4%CVE-2025-7477MEDIUMcode-projects Simple Car Rental System add_cars.php unrestricted uploadEPSS 0.4%CVE-2025-8407MEDIUMcode-projects Vehicle Management filter2.php sql injectionEPSS 0.4%CVE-2025-8467MEDIUMcode-projects Wazifa System regcontrol.php sql injectionEPSS 0.4%CVE-2025-13201MEDIUMcode-projects Simple Cafe Ordering System login.php sql injectionEPSS 0.4%CVE-2025-5708MEDIUMcode-projects Real Estate Property Management System NewsReport.php sql injectionEPSS 0.4%CVE-2025-3587MEDIUMZeroWdd/code-projects studentmanager getTeacherList improper authorizationEPSS 0.4%CVE-2025-8466MEDIUMcode-projects Online Farm System forgot_passfarmer.php sql injectionEPSS 0.4%CVE-2025-8409MEDIUMcode-projects Vehicle Management filter.php sql injectionEPSS 0.4%CVE-2025-8468MEDIUMcode-projects Wazifa System reset.php sql injectionEPSS 0.4%