Vulnerabilities in code-projects

1,284 results
Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2025-6850MEDIUMcode-projects Simple Forum forum1.php sql injectionEPSS 0.3%CVE-2025-7555MEDIUMcode-projects Voting System voters_add.php sql injectionEPSS 0.3%CVE-2026-10290MEDIUMcode-projects Hotel and Tourism Reservation System GET Parameter tour.php sql injectionEPSS 0.3%CVE-2025-7580MEDIUMcode-projects Voting System positions_row.php sql injectionEPSS 0.3%CVE-2025-6890MEDIUMcode-projects Movie Ticketing System ticketConfirmation.php sql injectionEPSS 0.3%CVE-2025-7558MEDIUMcode-projects Voting System positions_add.php sql injectionEPSS 0.3%CVE-2026-5150MEDIUMcode-projects Accounting System Parameter viewin_costumer.php sql injectionEPSS 0.3%CVE-2025-7557MEDIUMcode-projects Voting System voters_row.php sql injectionEPSS 0.3%CVE-2025-7167MEDIUMcode-projects Responsive Blog Site category.php sql injectionEPSS 0.3%CVE-2025-7556MEDIUMcode-projects Voting System voters_edit.php sql injectionEPSS 0.3%CVE-2025-6884MEDIUMcode-projects Staff Audit System search_index.php sql injectionEPSS 0.3%CVE-2026-5824MEDIUMcode-projects Simple Laundry System userchecklogin.php sql injectionEPSS 0.3%CVE-2025-7166MEDIUMcode-projects Responsive Blog Site single.php sql injectionEPSS 0.3%CVE-2026-5828MEDIUMcode-projects Simple IT Discussion Forum addcomment.php sql injectionEPSS 0.3%CVE-2026-6153MEDIUMcode-projects Vehicle Showroom Management System StaffDetailsFunction.php sql injectionEPSS 0.3%CVE-2026-0584MEDIUMcode-projects Online Product Reservation System left_cart.php sql injectionEPSS 0.3%CVE-2025-15211MEDIUMcode-projects Refugee Food Management System refugee.php sql injectionEPSS 0.3%CVE-2025-15184MEDIUMcode-projects Refugee Food Management System refugeesreport2.php sql injectionEPSS 0.3%CVE-2025-15210MEDIUMcode-projects Refugee Food Management System editrefugee.php sql injectionEPSS 0.3%CVE-2025-15212MEDIUMcode-projects Refugee Food Management System regfood.php sql injectionEPSS 0.3%