VYPR

Vendor CVEs

Code Projects

All CVEs

1,152 total · sorted by risk
  • CVE-2025-7187MedJul 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability classified as critical has been found in code-projects Chat System 1.0. Affected is an unknown function of the file /user/fetch_member.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has…

  • CVE-2025-7186MedJul 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Chat System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /user/fetch_chat.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit…

  • CVE-2025-7175MedJul 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects E-Commerce Site 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/users_photo.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack…

  • CVE-2025-7167MedJul 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit…

  • CVE-2025-7166MedJul 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been classified as critical. This affects an unknown part of the file /single.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit…

  • CVE-2025-6900MedJun 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-book.php. The manipulation of the argument image leads to unrestricted upload. The attack can be initiated remotely. The…

  • CVE-2025-6837MedJun 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely.…

  • CVE-2025-6667MedJun 25, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Car Rental System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/add_cars.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched…

  • CVE-2025-5881MedJun 9, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Chat System up to 1.0 and classified as critical. This issue affects some unknown processing of the file /user/confirm_password.php. The manipulation of the argument cid leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-5857MedJun 9, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /urinalysis_record.php. The manipulation of the argument itr_no leads to sql injection. The attack may be initiated…

  • CVE-2025-5780MedJun 6, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view_dental.php. The manipulation of the argument itr_no leads to sql injection. The attack may be…

  • CVE-2025-5779MedJun 6, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /birthing.php. The manipulation of the argument itr_no/comp_id leads to sql injection. The…

  • CVE-2025-5762MedJun 6, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Patient Record Management System 1.0. Affected is an unknown function of the file view_hematology.php. The manipulation of the argument itr_no leads to sql injection. It is possible to launch the…

  • CVE-2025-5729MedJun 6, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Health Center Patient Record Management System 1.0. Affected is an unknown function of the file /birthing_record.php. The manipulation of the argument itr_no leads to sql injection. It is possible to…

  • CVE-2026-7631MedMay 2, 2026
    risk 0.35cvss 5.4epss 0.00

    A vulnerability was found in code-projects Online Hospital Management System 1.0. The impacted element is an unknown function of the component Registration Handler. The manipulation of the argument Username results in improper authorization. The attack can be executed remotely.…

  • CVE-2025-8433MedAug 1, 2025
    risk 0.35cvss 5.4epss 0.00

    A vulnerability was found in code-projects Document Management System 1.0 and classified as critical. This issue affects the function unlink of the file /dell.php. The manipulation of the argument ID leads to path traversal. The attack may be initiated remotely. The exploit has…

  • CVE-2024-53569MedApr 22, 2025
    risk 0.35cvss 5.4epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the New Goal Creation section of Volmarg Personal Management System v1.4.65 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the description parameter.

  • CVE-2024-53568MedApr 22, 2025
    risk 0.35cvss 5.4epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the Image Upload section of Volmarg Personal Management System v1.4.65 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the tag parameter.

  • CVE-2026-7132MedApr 27, 2026
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path traversal. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-7109MedApr 27, 2026
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was detected in code-projects Invoice System in Laravel 1.0. This impacts an unknown function of the file /item of the component API Endpoint. Performing a manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit…

  • CVE-2026-6160MedApr 13, 2026
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this issue is the function SimpleChatbox_PHP of the file chatbox.sql of the component Endpoint. Performing a manipulation results in file and directory information exposure. It is possible to initiate the…

  • CVE-2026-5666MedApr 6, 2026
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was detected in code-projects Online FIR System 1.0. Affected by this issue is some unknown functionality of the file /complaints.sql of the component SQL Database Backup File Handler. The manipulation results in insecure storage of sensitive information. The…

  • CVE-2026-4900MedMar 26, 2026
    risk 0.34cvss 5.3epss 0.00

    A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file /dbfood/localhost.sql. This manipulation causes files or directories accessible. The attack can be initiated remotely. The exploit has been made available to…

  • CVE-2026-4532MedMar 22, 2026
    risk 0.34cvss 5.3epss 0.00

    A security vulnerability has been detected in code-projects Simple Food Ordering System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /food/sql/food.sql of the component Database Backup Handler. The manipulation leads to files or directories…

  • CVE-2025-13199MedNov 15, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been…

  • CVE-2025-8964MedAug 14, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was identified in code-projects Hostel Management System 1.0. This affects an unknown part of the file hostel_manage.exe of the component Login. The manipulation leads to improper authentication. It is possible to launch the attack on the local host. The exploit…

  • CVE-2025-8962MedAug 14, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in code-projects Hostel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file hostel_manage.exe of the component Login Form. The manipulation of the argument uname leads to stack-based buffer overflow. Local…

  • CVE-2026-10171MedMay 31, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been…

  • CVE-2026-7553MedMay 1, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in code-projects Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/edit_exercises.php. The manipulation of the argument edit_exercise results in sql injection. It is possible to launch the attack…

  • CVE-2026-7134MedApr 27, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly…

  • CVE-2026-7133MedApr 27, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been…

  • CVE-2026-5576MedApr 5, 2026
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in SourceCodester/jkev Record Management System 1.0. Affected by this issue is some unknown functionality of the file save_emp.php of the component Add Employee Page. This manipulation causes unrestricted upload. Remote exploitation of the attack is…

  • CVE-2026-2213MedFeb 9, 2026
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be…

  • CVE-2026-1533MedJan 28, 2026
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminAddCategory.php. The manipulation results in sql injection. The attack may be performed from remote. The exploit has been…

  • CVE-2026-0566MedJan 2, 2026
    risk 0.31cvss 4.7epss 0.00

    A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/edit_posts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely.…

  • CVE-2025-15197MedDec 29, 2025
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This vulnerability affects unknown code of the file /admin/editposts.php. Performing manipulation of the argument image results in unrestricted upload. The attack may…

  • CVE-2025-13574MedNov 24, 2025
    risk 0.31cvss 4.7epss 0.00

    A weakness has been identified in code-projects Online Bidding System 1.0. This issue affects the function categoryadd of the file /administrator/addcategory.php. This manipulation of the argument catimage causes unrestricted upload. The attack is possible to be carried out…

  • CVE-2025-13302MedNov 17, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was identified in code-projects Courier Management System 1.0. This affects an unknown part of the file /add-new-officer.php. Such manipulation of the argument ManagerName leads to sql injection. The attack can be launched remotely. The exploit is publicly…

  • CVE-2025-13076MedNov 12, 2025
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/usersetting.php. Executing manipulation of the argument usname can lead to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2025-13075MedNov 12, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was detected in code-projects Responsive Hotel Site 1.0. Impacted is an unknown function of the file /admin/usersettingdel.php. Performing manipulation of the argument eid results in sql injection. Remote exploitation of the attack is possible. The exploit is now…

  • CVE-2025-12913MedNov 8, 2025
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in code-projects Responsive Hotel Site 1.0. This affects an unknown part of the file /admin/roomdel.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and…

  • CVE-2025-12857MedNov 7, 2025
    risk 0.31cvss 4.7epss 0.00

    A security vulnerability has been detected in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/roombook.php. Such manipulation of the argument rid leads to sql injection. The attack can be launched remotely. The exploit has…

  • CVE-2025-12856MedNov 7, 2025
    risk 0.31cvss 4.7epss 0.00

    A weakness has been identified in code-projects Responsive Hotel Site 1.0. Impacted is an unknown function of the file /admin/reservation.php. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been made available…

  • CVE-2025-12855MedNov 7, 2025
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in code-projects Responsive Hotel Site 1.0. This issue affects some unknown processing of the file /admin/newsletterdel.php. The manipulation of the argument eid results in sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-12594MedNov 2, 2025
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0. This affects an unknown function of the file /admin/add_account.php. The manipulation of the argument Name results in sql injection. The attack may be performed from remote. The…

  • CVE-2025-12593MedNov 2, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was identified in code-projects Simple Online Hotel Reservation System 2.0. The impacted element is an unknown function of the file /admin/edit_room.php of the component Photo Handler. The manipulation leads to unrestricted upload. The attack is possible to be…

  • CVE-2025-12315MedOct 27, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was determined in code-projects Food Ordering System 1.0. This affects an unknown function of the file /admin/menu.php. Executing a manipulation of the argument itemPrice can lead to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2025-12314MedOct 27, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an unknown function of the file /admin/deleteitem.php. Performing a manipulation of the argument itemID results in sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2025-11668MedOct 13, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/update_user.php. This manipulation of the argument Password causes sql injection. The attack is possible to be carried out…

  • CVE-2025-11508MedOct 8, 2025
    risk 0.31cvss 4.7epss 0.00

    A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been…

Page 10 of 24