Vulnerabilities in SourceCodester

1,844 results
Vexday analysis

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2025-8953MEDIUMSourceCodester COVID 19 Testing Management System check_availability.php sql injectionEPSS 0.4%CVE-2025-8985MEDIUMSourceCodester COVID 19 Testing Management System profile.php sql injectionEPSS 0.4%CVE-2025-8987MEDIUMSourceCodester COVID 19 Testing Management System test-details.php sql injectionEPSS 0.4%CVE-2024-8154MEDIUMSourceCodester QR Code Bookmark System Parameter update-bookmark.php cross site scriptingEPSS 0.4%CVE-2024-8137MEDIUMSourceCodester Record Management System search_user.php cross site scriptingEPSS 0.4%CVE-2024-8153MEDIUMSourceCodester QR Code Bookmark System delete-bookmark.php cross site scriptingEPSS 0.4%CVE-2024-8141MEDIUMSourceCodester Daily Calories Monitoring Tool add-calorie.php cross site scriptingEPSS 0.4%CVE-2025-10481MEDIUMSourceCodester Online Student File Management System remove_file.php sql injectionEPSS 0.4%CVE-2025-10483MEDIUMSourceCodester Online Student File Management System save_user.php sql injectionEPSS 0.4%CVE-2025-10083MEDIUMSourceCodester Pet Grooming Management Software profile.php unrestricted uploadEPSS 0.4%CVE-2025-13060MEDIUMSourceCodester Survey Application System view_survey.php sql injectionEPSS 0.4%CVE-2024-0349LOWSourceCodester Engineers Online Portal missing secure attributeEPSS 0.4%CVE-2024-2066LOWSourceCodester Computer Inventory System add-computer.php cross site scriptingEPSS 0.4%CVE-2025-9788MEDIUMSourceCodester/Campcodes School Log Management System admin_class.php sql injectionEPSS 0.4%CVE-2022-2645LOWSourceCodester Garage Management System edituser.php cross site scriptingEPSS 0.4%CVE-2022-2748LOWSourceCodester Simple Online Book Store System edit.php cross site scriptingEPSS 0.4%CVE-2025-14530MEDIUMSourceCodester Real Estate Property Listing App property.php unrestricted uploadEPSS 0.4%CVE-2025-10078MEDIUMSourceCodester Online Polling System candidates.php sql injectionEPSS 0.4%CVE-2024-7683MEDIUMSourceCodester Kortex Lite Advocate Office Management System addcase_stage.php cross site scriptingEPSS 0.4%CVE-2025-9702MEDIUMSourceCodester Simple Cafe Billing System sales_report.php sql injectionEPSS 0.4%