Vulnerabilidades en SourceCodester

1844 resultados
Análisis Vexday

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2025-11487MEDIUMSourceCodester Farm Management System uploadProduct.php sql injectionEPSS 0.3%CVE-2025-11405MEDIUMSourceCodester Hotel and Lodge Management System del_tax.php sql injectionEPSS 0.3%CVE-2025-11402MEDIUMSourceCodester Hotel and Lodge Management System del_curr.php sql injectionEPSS 0.3%CVE-2025-11469MEDIUMSourceCodester Hotel and Lodge Management System save_customer.php sql injectionEPSS 0.3%CVE-2025-11404MEDIUMSourceCodester Hotel and Lodge Management System save_tax.php sql injectionEPSS 0.3%CVE-2025-11399MEDIUMSourceCodester Hotel and Lodge Management System save_room.php sql injectionEPSS 0.3%CVE-2026-5330MEDIUMSourceCodester/mayuri_k Best Courier Management System User Delete ajax.php access controlEPSS 0.3%CVE-2025-1905MEDIUMSourceCodester Employee Management System employee.php cross site scriptingEPSS 0.3%CVE-2026-3752MEDIUMSourceCodester Employee Task Management System GET Parameter daily-task-report.php sql injectionEPSS 0.3%CVE-2025-10480MEDIUMSourceCodester Online Student File Management System save_file.php unrestricted uploadEPSS 0.3%CVE-2026-3751MEDIUMSourceCodester Employee Task Management System GET Parameter daily-attendance-report.php sql injectionEPSS 0.3%CVE-2026-2089MEDIUMSourceCodester Online Class Record System controller.php sql injectionEPSS 0.3%CVE-2026-2087MEDIUMSourceCodester Online Class Record System login.php sql injectionEPSS 0.3%CVE-2026-2090MEDIUMSourceCodester Online Class Record System search.php sql injectionEPSS 0.3%CVE-2024-1024LOWSourceCodester Facebook News Feed Like New Account cross site scriptingEPSS 0.3%CVE-2023-5021LOWSourceCodester AC Repair and Services System cross site scriptingEPSS 0.3%CVE-2023-5585LOWSourceCodester Online Motorcycle Rental System Bike List cross site scriptingEPSS 0.3%CVE-2025-10594MEDIUMSourceCodester Online Student File Management System delete_student.php sql injectionEPSS 0.3%CVE-2023-0706MEDIUMSourceCodester Medical Certificate Generator App manage_record.php sql injectionEPSS 0.3%CVE-2023-0707MEDIUMSourceCodester Medical Certificate Generator App function.php delete_record sql injectionEPSS 0.3%