Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2025-9022MEDIUMSourceCodester Online Bank Management System statements.php sql injectionEPSS 0.5%CVE-2025-3119MEDIUMSourceCodester Online Tutor Portal manage_course.php sql injectionEPSS 0.5%CVE-2025-3120MEDIUMSourceCodester Apartment Visitors Management System add-apartment.php sql injectionEPSS 0.5%CVE-2025-3045MEDIUMoretnom23/SourceCodester Apartment Visitor Management System remove-apartment.php sql injectionEPSS 0.5%CVE-2025-9021MEDIUMSourceCodester Online Bank Management System transfer.php sql injectionEPSS 0.5%CVE-2023-1054MEDIUMSourceCodester Music Gallery Site sql injectionEPSS 0.5%CVE-2023-1053MEDIUMSourceCodester Music Gallery Site view_category.php sql injectionEPSS 0.5%CVE-2025-3141MEDIUMSourceCodester Online Medicine Ordering System manage_category.php sql injectionEPSS 0.5%CVE-2025-3118MEDIUMSourceCodester Online Tutor Portal view_course.php sql injectionEPSS 0.5%CVE-2022-2746MEDIUMSourceCodester Simple Online Book Store System Admin_ add.php unrestricted uploadEPSS 0.5%CVE-2025-1191MEDIUMSourceCodester Multi Restaurant Table Reservation System approve-reject.php sql injectionEPSS 0.5%CVE-2024-7929MEDIUMSourceCodester Simple Forum Website Signup Page registration.php cross site scriptingEPSS 0.5%CVE-2024-7685MEDIUMSourceCodester Kortex Lite Advocate Office Management System adds.php cross site scriptingEPSS 0.5%CVE-2025-4898MEDIUMSourceCodester Student Result Management System Logo File update_system.php unlink path traversalEPSS 0.5%CVE-2024-8554MEDIUMSourceCodester Clinics Patient Management System users.php cross site scriptingEPSS 0.5%CVE-2025-8470MEDIUMSourceCodester Online Hotel Reservation System deleteroom.php sql injectionEPSS 0.5%CVE-2025-8469MEDIUMSourceCodester Online Hotel Reservation System deletegallery.php sql injectionEPSS 0.5%CVE-2022-3503LOWSourceCodester Purchase Order Management System Supplier cross site scriptingEPSS 0.5%CVE-2022-3587LOWSourceCodester Simple Cold Storage Management System My Account cross site scriptingEPSS 0.5%CVE-2022-3868MEDIUMSourceCodester Sanitization Management System sql injectionEPSS 0.5%