Vulnerabilities in code-projects

1,284 results
Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2026-0584MEDIUMcode-projects Online Product Reservation System left_cart.php sql injectionEPSS 0.3%CVE-2026-0591MEDIUMcode-projects Online Product Reservation System Cart Update update.php sql injectionEPSS 0.3%CVE-2025-15211MEDIUMcode-projects Refugee Food Management System refugee.php sql injectionEPSS 0.3%CVE-2025-15184MEDIUMcode-projects Refugee Food Management System refugeesreport2.php sql injectionEPSS 0.3%CVE-2025-5627MEDIUMcode-projects Patient Record Management System sputum_form.php sql injectionEPSS 0.3%CVE-2025-5780MEDIUMcode-projects Patient Record Management System view_dental.php sql injectionEPSS 0.3%CVE-2026-0701MEDIUMcode-projects Intern Membership Management System add_admin.php sql injectionEPSS 0.3%CVE-2025-5729MEDIUMcode-projects Health Center Patient Record Management System birthing_record.php sql injectionEPSS 0.3%CVE-2025-5779MEDIUMcode-projects Patient Record Management System birthing.php sql injectionEPSS 0.3%CVE-2026-10110MEDIUMcode-projects Student Details Management System index.php sql injectionEPSS 0.3%CVE-2025-7951MEDIUMcode-projects Public Chat Room send_message.php cross site scriptingEPSS 0.3%CVE-2026-0697MEDIUMcode-projects Intern Membership Management System edit_admin.php sql injectionEPSS 0.3%CVE-2025-1209MEDIUMcode-projects Wazifa System search_resualts.php searchuser cross site scriptingEPSS 0.3%CVE-2025-1577MEDIUMcode-projects Blood Bank System prostatus.php cross site scriptingEPSS 0.3%CVE-2026-6182MEDIUMcode-projects Simple Content Management System login.php sql injectionEPSS 0.3%CVE-2026-6183MEDIUMcode-projects Simple Content Management System index.php sql injectionEPSS 0.3%CVE-2025-1195MEDIUMcode-projects Real Estate Property Management System EditCategory cross site scriptingEPSS 0.3%CVE-2025-1904MEDIUMcode-projects Blood Bank System A+.php cross site scriptingEPSS 0.3%CVE-2025-1208MEDIUMcode-projects Wazifa System Profile.php cross site scriptingEPSS 0.3%CVE-2026-0699MEDIUMcode-projects Intern Membership Management System edit_activity.php sql injectionEPSS 0.3%