Vulnerabilidades em SourceCodester

1.844 resultados
Análise Vexday

Com 1.829 CVEs catalogadas e 132 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao SourceCodester reflete um ritmo elevado de descobertas recentes que exige atenção contínua. A taxa de exploração ativa está abaixo da média geral do catálogo, sem registros no CISA KEV, o que pode indicar menor visibilidade dos ativos em ambientes críticos, mas não reduz o risco potencial dado que 143 falhas já possuem PoC pública disponível. O tipo de falha mais comum é CWE-89 (SQL Injection), uma classe de vulnerabilidade com longa tradição de abuso e baixo custo de exploração. A CVE mais perigosa identificada atualmente é CVE-2022-4855, com score EPSS de 0,2646, sugerindo probabilidade não negligenciável de exploração e recomendando priorização imediata em processos de remediação.

CVE-2025-5728MEDIUMSourceCodester Open Source Clinic Management System manage_website.php unrestricted uploadEPSS 0.4%CVE-2024-8140MEDIUMSourceCodester Task Progress Tracker update-task.php cross site scriptingEPSS 0.4%CVE-2026-10236MEDIUMSourceCodester Water Billing Management System User Management Endpoint Users.php save improper authorizationEPSS 0.4%CVE-2025-3822MEDIUMSourceCodester Web-based Pharmacy Product Management System changepassword.php cross site scriptingEPSS 0.4%CVE-2026-3793MEDIUMSourceCodester Sales and Inventory System GET Parameter sales_invoice1.php sql injectionEPSS 0.4%CVE-2025-12597MEDIUMSourceCodester Best House Rental Management System admin_class.php save_category sql injectionEPSS 0.4%CVE-2025-12598MEDIUMSourceCodester Best House Rental Management System admin_class.php save_tenant sql injectionEPSS 0.4%CVE-2025-1590MEDIUMSourceCodester E-Learning System List of Lessons Page index.php unrestricted uploadEPSS 0.4%CVE-2024-7645MEDIUMSourceCodester Clinics Patient Management System User Page users.php cross-site request forgeryEPSS 0.4%CVE-2025-10617MEDIUMSourceCodester Online Polling System positions.php sql injectionEPSS 0.4%CVE-2025-10087MEDIUMSourceCodester Pet Grooming Management Software profit_report.php sql injectionEPSS 0.4%CVE-2025-5758MEDIUMSourceCodester Open Source Clinic Management System doctor.php sql injectionEPSS 0.4%CVE-2025-5712MEDIUMSourceCodester Open Source Clinic Management System appointment.php sql injectionEPSS 0.4%CVE-2022-2813MEDIUMSourceCodester Guest Management System cleartext storageEPSS 0.4%CVE-2026-3764MEDIUMSourceCodester Client Database Management System superadmin_user_update.php improper authorizationEPSS 0.4%CVE-2026-3734MEDIUMSourceCodester Client Database Management System Endpoint fetch_manager_details.php improper authorizationEPSS 0.4%CVE-2025-5755MEDIUMSourceCodester Open Source Clinic Management System email_config.php sql injectionEPSS 0.4%CVE-2023-1690LOWSourceCodester Earnings and Expense Tracker App cross site scriptingEPSS 0.4%CVE-2023-1687LOWSourceCodester Simple Task Allocation System cross site scriptingEPSS 0.4%CVE-2023-1688LOWSourceCodester Earnings and Expense Tracker App cross site scriptingEPSS 0.4%