Vulnerabilidades en code-projects

1284 resultados
Análisis Vexday

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2026-2213MEDIUMcode-projects Online Music Site AdminAddAlbum.php unrestricted uploadEPSS 0.3%CVE-2025-13396MEDIUMcode-projects Courier Management System add-office.php sql injectionEPSS 0.3%CVE-2025-6347MEDIUMcode-projects Responsive Blog pageViewMembers.php cross site scriptingEPSS 0.3%CVE-2025-4892MEDIUMcode-projects Police Station Management System Delete Record source.cpp remove stack-based overflowEPSS 0.3%CVE-2025-11421MEDIUMcode-projects Voting System candidates_edit.php cross site scriptingEPSS 0.3%CVE-2026-4909MEDIUMcode-projects Exam Form Submission update_s7.php cross site scriptingEPSS 0.3%CVE-2025-15213MEDIUMcode-projects Student File Management System File Download download.php improper authorizationEPSS 0.3%CVE-2025-4890MEDIUMcode-projects Tourism Management System Login User LoginUser stack-based overflowEPSS 0.3%CVE-2025-14246MEDIUMcode-projects Simple Shopping Cart settings.php sql injectionEPSS 0.3%CVE-2025-4498MEDIUMcode-projects Simple Bus Reservation System Install Bus install stack-based overflowEPSS 0.3%CVE-2025-14247MEDIUMcode-projects Simple Shopping Cart additems.php sql injectionEPSS 0.3%CVE-2025-4500MEDIUMcode-projects Hotel Management System Edit Room edit stack-based overflowEPSS 0.3%CVE-2025-4499MEDIUMcode-projects Simple Hospital Management System Add Information add stack-based overflowEPSS 0.3%CVE-2025-4888MEDIUMcode-projects Pharmacy Management System Add Order Details take_order buffer overflowEPSS 0.3%CVE-2025-4501MEDIUMcode-projects Album Management System Search Albums searchalbum stack-based overflowEPSS 0.3%CVE-2025-4889MEDIUMcode-projects Tourism Management System User Registration AddUser buffer overflowEPSS 0.3%CVE-2025-4891MEDIUMcode-projects Police Station Management System Display Record source.cpp display buffer overflowEPSS 0.3%CVE-2025-14531MEDIUMcode-projects Rental Management System Log Transaction.java crlf injectionEPSS 0.3%CVE-2025-14939MEDIUMcode-projects Online Appointment Booking System deletemanager.php sql injectionEPSS 0.3%CVE-2026-11489MEDIUMcode-projects Online Music Site AdminDeleteAlbum.php sql injectionEPSS 0.3%