Vulnerabilidades en code-projects

1282 resultados
Análisis Vexday

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2024-10199MEDIUMcode-projects Pharmacy Management System Manage Medicines Page manage_medicine.php cross site scriptingEPSS 0.4%CVE-2024-11078MEDIUMcode-projects Job Recruitment register.php cross site scriptingEPSS 0.4%CVE-2024-9084MEDIUMcode-projects Blood Bank System bbms.php cross site scriptingEPSS 0.4%CVE-2024-10198MEDIUMcode-projects Pharmacy Management System Manage Customer Page manage_customer.php cross site scriptingEPSS 0.4%CVE-2025-7191MEDIUMcode-projects Student Enrollment System login.php sql injectionEPSS 0.4%CVE-2024-9805MEDIUMcode-projects Blood Bank System campsdetails.php cross site scriptingEPSS 0.4%CVE-2024-11996MEDIUMcode-projects Farmacia editar-fornecedor.php cross site scriptingEPSS 0.4%CVE-2025-11508MEDIUMcode-projects Voting System voters_add.php unrestricted uploadEPSS 0.4%CVE-2025-6891MEDIUMcode-projects Inventory Management System createUser.php sql injectionEPSS 0.4%CVE-2025-7157MEDIUMcode-projects Online Note Sharing login.php sql injectionEPSS 0.4%CVE-2025-6821MEDIUMcode-projects Inventory Management System createOrder.php sql injectionEPSS 0.4%CVE-2025-7461MEDIUMcode-projects Modern Bag action.php sql injectionEPSS 0.4%CVE-2025-6820MEDIUMcode-projects Inventory Management System createProduct.php sql injectionEPSS 0.4%CVE-2025-7607MEDIUMcode-projects Simple Shopping Cart save_order.php sql injectionEPSS 0.4%CVE-2025-6902MEDIUMcode-projects Inventory Management System editUser.php sql injectionEPSS 0.4%CVE-2025-6828MEDIUMcode-projects Inventory Management System orders.php sql injectionEPSS 0.4%CVE-2025-6360MEDIUMcode-projects Simple Pizza Ordering System portal.php sql injectionEPSS 0.4%CVE-2025-6904MEDIUMcode-projects Car Rental System add_cars.php sql injectionEPSS 0.4%CVE-2025-6359MEDIUMcode-projects Simple Pizza Ordering System cashconfirm.php sql injectionEPSS 0.4%CVE-2025-7199MEDIUMcode-projects Library System notapprove.php sql injectionEPSS 0.4%