Vulnerabilidades en code-projects

1284 resultados
Análisis Vexday

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2024-10197MEDIUMcode-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scriptingEPSS 0.4%CVE-2025-15409MEDIUMcode-projects Online Guitar Store Delete_product.php sql injectionEPSS 0.4%CVE-2025-13241MEDIUMcode-projects Student Information System index.php sql injectionEPSS 0.4%CVE-2025-3206MEDIUMcode-projects Hospital Management System doctor-specilization.php sql injectionEPSS 0.4%CVE-2026-0585MEDIUMcode-projects Online Product Reservation System GET Parameter order_view.php sql injectionEPSS 0.4%CVE-2025-8809MEDIUMcode-projects Online Medicine Guide addelidetails.php sql injectionEPSS 0.4%CVE-2025-11585MEDIUMcode-projects Project Monitoring System useredit.php sql injectionEPSS 0.4%CVE-2026-0607MEDIUMcode-projects Online Music Site AdminViewSongs.php sql injectionEPSS 0.4%CVE-2025-3207MEDIUMcode-projects Patient Record Management System birthing_form.php sql injectionEPSS 0.4%CVE-2026-6148MEDIUMcode-projects Vehicle Showroom Management System MonthTotalReportUpdateFunction.php sql injectionEPSS 0.4%CVE-2026-0592MEDIUMcode-projects Online Product Reservation System User Registration register_code.php sql injectionEPSS 0.4%CVE-2025-0175MEDIUMcode-projects Online Shop view.php cross site scriptingEPSS 0.4%CVE-2025-12316MEDIUMcode-projects Courier Management System edit-courier.php sql injectionEPSS 0.4%CVE-2026-0700MEDIUMcode-projects Intern Membership Management System check_admin.php sql injectionEPSS 0.4%CVE-2025-14643MEDIUMcode-projects Simple Attendance Record System check.php sql injectionEPSS 0.4%CVE-2025-11584MEDIUMcode-projects Online Job Search Engine searchjob.php sql injectionEPSS 0.4%CVE-2025-11583MEDIUMcode-projects Online Job Search Engine postjob.php sql injectionEPSS 0.4%CVE-2025-1957MEDIUMcode-projects Blood Bank System o+.php cross site scriptingEPSS 0.4%CVE-2025-14590MEDIUMcode-projects Prison Management System search1.php sql injectionEPSS 0.4%CVE-2025-2049MEDIUMcode-projects Blood Bank System AB+.php cross site scriptingEPSS 0.4%