Vulnerabilities in code-projects

1,282 results
Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2025-7196MEDIUMcode-projects Jonnys Liquor browse.php sql injectionEPSS 0.4%CVE-2025-6889MEDIUMcode-projects Movie Ticketing System logIn.php sql injectionEPSS 0.4%CVE-2025-6357MEDIUMcode-projects Simple Pizza Ordering System paymentportal.php sql injectionEPSS 0.4%CVE-2025-7409MEDIUMcode-projects Mobile Shop LoginAsAdmin.php sql injectionEPSS 0.4%CVE-2025-6905MEDIUMcode-projects Car Rental System signup.php sql injectionEPSS 0.4%CVE-2025-6917MEDIUMcode-projects Online Hotel Booking registration.php sql injectionEPSS 0.4%CVE-2025-7461MEDIUMcode-projects Modern Bag action.php sql injectionEPSS 0.4%CVE-2025-7171MEDIUMcode-projects Crime Reporting System policelogin.php sql injectionEPSS 0.4%CVE-2025-6826MEDIUMcode-projects Payroll Management System ajax.php sql injectionEPSS 0.4%CVE-2025-6904MEDIUMcode-projects Car Rental System add_cars.php sql injectionEPSS 0.4%CVE-2025-6159MEDIUMcode-projects Hostel Management System allocate_room.php sql injectionEPSS 0.4%CVE-2025-0301MEDIUMcode-projects Online Book Shop subcat.php cross site scriptingEPSS 0.4%CVE-2025-7609MEDIUMcode-projects Simple Shopping Cart register.php sql injectionEPSS 0.4%CVE-2025-7199MEDIUMcode-projects Library System notapprove.php sql injectionEPSS 0.4%CVE-2025-5881MEDIUMcode-projects Chat System confirm_password.php sql injectionEPSS 0.4%CVE-2025-7755MEDIUMcode-projects Online Ordering System edit_product.php unrestricted uploadEPSS 0.4%CVE-2025-12256MEDIUMcode-projects Online Event Judging System edit_contestant.php sql injectionEPSS 0.4%CVE-2025-7753MEDIUMcode-projects Online Appointment Booking System adddoctor.php sql injectionEPSS 0.4%CVE-2025-7593MEDIUMcode-projects Job Diary view-all.php sql injectionEPSS 0.4%CVE-2025-7181MEDIUMcode-projects Staff Audit System test.php unrestricted uploadEPSS 0.4%