Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2024-7225MEDIUMSourceCodester Insurance Management System Edit Insurance Policy Page update_policy cross site scriptingEPSS 0.5%CVE-2025-4720MEDIUMSourceCodester Student Result Management System drop_student.php path traversalEPSS 0.5%CVE-2024-1972LOWSourceCodester Online Job Portal EditProfile.php cross site scriptingEPSS 0.5%CVE-2024-5098MEDIUMSourceCodester Simple Inventory System login.php sql injectionEPSS 0.5%CVE-2024-7218MEDIUMSourceCodester/Campcodes School Log Management System ajax.php cross site scriptingEPSS 0.5%CVE-2022-4739HIGHSourceCodester School Dormitory Management System Admin Login sql injectionEPSS 0.5%CVE-2025-10482MEDIUMSourceCodester Online Student File Management System index.php sql injectionEPSS 0.5%CVE-2025-9660MEDIUMSourceCodester Bakeshop Online Ordering System passwordrecover.php sql injectionEPSS 0.5%CVE-2025-5649MEDIUMSourceCodester Student Result Management System Register Interface new_user access controlEPSS 0.5%CVE-2024-2067MEDIUMSourceCodester Computer Inventory System delete-computer.php sql injectionEPSS 0.5%CVE-2023-2740LOWSourceCodester Guest Management System GET Parameter dateTest.php cross site scriptingEPSS 0.5%CVE-2024-1196MEDIUMSourceCodester Testimonial Page Manager HTTP POST Request add-testimonial.php cross site scriptingEPSS 0.5%CVE-2025-4470MEDIUMSourceCodester Online Student Clearance System add-student.php cross site scriptingEPSS 0.5%CVE-2025-4469MEDIUMSourceCodester Online Student Clearance System add-admin.php cross site scriptingEPSS 0.5%CVE-2022-2690LOWSourceCodester Wedding Hall Booking System Booking Form cross site scriptingEPSS 0.5%CVE-2024-7752MEDIUMSourceCodester Clinics Patient Management System update_medicine.php cross site scriptingEPSS 0.5%CVE-2022-3470MEDIUMSourceCodester Human Resource Management System getstatecity.php sql injectionEPSS 0.5%CVE-2022-2396LOWSourceCodester Simple e-Learning System claire_blake cross site scriptingEPSS 0.5%CVE-2025-4313MEDIUMSourceCodester Advanced Web Store admin_addnew_product.php sql injectionEPSS 0.5%CVE-2025-4312MEDIUMSourceCodester Advanced Web Store productdetail.php sql injectionEPSS 0.5%