Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2024-2145LOWSourceCodester Online Mobile Management Store update-tracker.php cross site scriptingEPSS 0.6%CVE-2024-7853MEDIUMSourceCodester Yoga Class Registration System sql injectionEPSS 0.6%CVE-2024-3320LOWSourceCodester eLearning System cross site scriptingEPSS 0.6%CVE-2024-7281MEDIUMSourceCodester Lot Reservation Management System sql injectionEPSS 0.6%CVE-2024-7196MEDIUMSourceCodester Complaints Report Management System sql injectionEPSS 0.6%CVE-2025-1596MEDIUMSourceCodester Best Church Management Software fpassword.php sql injectionEPSS 0.6%CVE-2024-7220MEDIUMSourceCodester/Campcodes School Log Management System print_barcode.php sql injectionEPSS 0.6%CVE-2024-7282MEDIUMSourceCodester Lot Reservation Management System manage_model.php sql injectionEPSS 0.6%CVE-2024-3426LOWSourceCodester Online Courseware editt.php cross site scriptingEPSS 0.6%CVE-2023-0531MEDIUMSourceCodester Online Tours & Travels Management System booking_report.php sql injectionEPSS 0.6%CVE-2024-7280MEDIUMSourceCodester Lot Reservation Management System view_reserved.php sql injectionEPSS 0.6%CVE-2024-8380MEDIUMSourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php sql injectionEPSS 0.6%CVE-2024-8345MEDIUMSourceCodester Music Gallery Site Users.php sql injectionEPSS 0.6%CVE-2022-2020LOWSourceCodester Prison Management System System Name cross site scriptingEPSS 0.6%CVE-2024-5134MEDIUMSourceCodester Electricity Consumption Monitoring Tool delete-bill.php sql injectionEPSS 0.6%CVE-2024-5119MEDIUMSourceCodester Event Registration System sql injectionEPSS 0.6%CVE-2024-5069MEDIUMSourceCodester Simple Online Mens Salon Management System view_service.php sql injectionEPSS 0.6%CVE-2023-6767MEDIUMSourceCodester Wedding Guest e-Book add-guest.php cross site scriptingEPSS 0.6%CVE-2024-5120MEDIUMSourceCodester Event Registration System sql injectionEPSS 0.6%CVE-2022-2577MEDIUMSourceCodester Garage Management System edituser.php sql injectionEPSS 0.6%