Vulnerabilidades en SourceCodester

1844 resultados
Análisis Vexday

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2024-7948MEDIUMSourceCodester Accounts Manager App Update Account Page update-account.php cross site scriptingEPSS 0.4%CVE-2024-8337MEDIUMSourceCodester Contact Manager with Export to VCF index.html cross site scriptingEPSS 0.4%CVE-2024-8951MEDIUMSourceCodester Resort Reservation System manage_fee.php cross site scriptingEPSS 0.4%CVE-2025-5371MEDIUMSourceCodester Health Center Patient Record Management System admin.php sql injectionEPSS 0.4%CVE-2024-7285MEDIUMSourceCodester Establishment Billing Management System cross site scriptingEPSS 0.4%CVE-2025-4816MEDIUMSourceCodester Doctor's Appointment System GET Parameter appointment.php sql injectionEPSS 0.4%CVE-2025-4817MEDIUMSourcecodester Doctor's Appointment System GET Parameter delete-appointment.php sql injectionEPSS 0.4%CVE-2025-4935MEDIUMSourceCodester Stock Management System changePassword.php sql injectionEPSS 0.4%CVE-2025-4818MEDIUMSourceCodester Doctor's Appointment System GET Parameter delete-doctor.php sql injectionEPSS 0.4%CVE-2025-6355MEDIUMSourceCodester Online Hotel Reservation System execeditroom.php sql injectionEPSS 0.4%CVE-2025-5002MEDIUMSourceCodester Client Database Management System user_proposal_update_order.php sql injectionEPSS 0.4%CVE-2025-2377MEDIUMSourceCodester Vehicle Management System confirmbooking.php cross site scriptingEPSS 0.4%CVE-2024-8172MEDIUMSourceCodester QR Code Attendance System delete-student.php cross site scriptingEPSS 0.4%CVE-2025-4909MEDIUMSourceCodester Client Database Management System exposure of information through directory listingEPSS 0.4%CVE-2024-10406MEDIUMSourceCodester Petrol Pump Management Software edit_fuel.php sql injectionEPSS 0.4%CVE-2024-10407MEDIUMSourceCodester Petrol Pump Management Software edit_customer.php sql injectionEPSS 0.4%CVE-2025-3589MEDIUMSourceCodester Music Class Enrollment System manage_class.php sql injectionEPSS 0.4%CVE-2024-10411MEDIUMSourceCodester Online Hotel Reservation System controller.php doCheckout sql injectionEPSS 0.4%CVE-2024-9810MEDIUMSourceCodester Record Management System sort2_user.php cross site scriptingEPSS 0.4%CVE-2023-3680MEDIUMSourceCodester Lost and Found Information System HTTP POST Request sql injectionEPSS 0.4%