Vulnerabilities in code-projects

1,284 results

Vexday analysis

O portfólio de vulnerabilidades do vendor code-projects acumula 1.281 CVEs catalogadas, com volume expressivo de entradas recentes — 136 apenas nos últimos 90 dias —, o que indica ritmo elevado de descobertas e atenção crescente da comunidade de pesquisa. A falha mais frequente é CWE-89 (injeção de SQL), padrão que tende a ser explorado de forma sistemática, e 146 CVEs já possuem prova de conceito pública disponível, reduzindo a barreira técnica para possíveis atacantes. A CVE mais perigosa ativa no momento é CVE-2023-7137, com score EPSS de 0,1703, o maior registrado no conjunto — embora nenhuma CVE desse vendor figure no catálogo KEV da CISA, taxa abaixo da média geral do catálogo. A combinação de PoCs públicas numerosas, falhas de injeção recorrentes e cadência alta de novas vulnerabilidades recomenda atenção prioritária a revisões de código e controles de entrada em projetos que utilizem componentes desse vendor.

CVE-2026-2173MEDIUMcode-projects Online Examination System login.php sql injectionEPSS 0.3%CVE-2025-3570MEDIUMJamesZBL/code-projects db-hospital-drug ContentController.java save cross site scriptingEPSS 0.3%CVE-2025-6667MEDIUMcode-projects Car Rental System add_cars.php unrestricted uploadEPSS 0.3%CVE-2026-0850MEDIUMcode-projects Intern Membership Management System delete_activity.php sql injectionEPSS 0.3%CVE-2025-7190MEDIUMcode-projects Library Management System student_edit_photo.php unrestricted uploadEPSS 0.3%CVE-2025-7413MEDIUMcode-projects Library System profile.php unrestricted uploadEPSS 0.3%CVE-2025-7412MEDIUMcode-projects Library System profile.php unrestricted uploadEPSS 0.3%CVE-2025-8167MEDIUMcode-projects Church Donation System edit_members.php cross site scriptingEPSS 0.3%CVE-2026-0577MEDIUMcode-projects Online Product Reservation System prod.php unrestricted uploadEPSS 0.3%CVE-2025-15209MEDIUMcode-projects Refugee Food Management System editfood.php sql injectionEPSS 0.3%CVE-2026-6160MEDIUMcode-projects Simple ChatBox Endpoint chatbox.sql SimpleChatbox_PHP file information disclosureEPSS 0.3%CVE-2025-13279MEDIUMcode-projects Nero Social Networking Site profilefriends.php sql injectionEPSS 0.3%CVE-2025-6848MEDIUMcode-projects Simple Forum forum1.php unrestricted uploadEPSS 0.3%CVE-2026-5650MEDIUMcode-projects Online Application System for Admission oas.sql sensitive informationEPSS 0.3%CVE-2025-9025MEDIUMcode-projects Simple Cafe Ordering System portal.php sql injectionEPSS 0.3%CVE-2025-13243MEDIUMcode-projects Student Information System editprofile.php sql injectionEPSS 0.3%CVE-2025-7754MEDIUMcode-projects Patient Record Management System xray_form.php sql injectionEPSS 0.3%CVE-2025-14833MEDIUMcode-projects Online Appointment Booking System deletemanagerclinic.php sql injectionEPSS 0.3%CVE-2025-1577MEDIUMcode-projects Blood Bank System prostatus.php cross site scriptingEPSS 0.3%CVE-2025-3592MEDIUMZHENFENG13/code-projects My-Blog-layui edit cross site scriptingEPSS 0.3%

← previouspage 52 / 65next →