VYPR

Vendor CVEs

Code Projects

All CVEs

1,152 total · sorted by risk
  • CVE-2025-7477MedJul 12, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability, which was classified as critical, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/add_cars.php. The manipulation of the argument image leads to unrestricted upload. The attack may be…

  • CVE-2025-6842MedJun 29, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in code-projects Product Inventory System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/edit_user.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-6841MedJun 29, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability has been found in code-projects Product Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit_product.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely.…

  • CVE-2025-6484MedJun 22, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in code-projects Online Shopping Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /action.php. The manipulation of the argument cat_id/brand_id/keyword/proId/pid leads to sql injection. The attack…

  • CVE-2026-10289MedJun 1, 2026
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in code-projects Hotel and Tourism Reservation System 1.0. Impacted is an unknown function of the file /ht/tour.php. Performing a manipulation of the argument name /email /people /number results in cross site scripting. The attack can be…

  • CVE-2026-9448MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown function of the file /applyleave.php. Executing a manipulation of the argument ID can lead to cross site scripting. The attack may be performed from remote. The exploit has…

  • CVE-2026-9419MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Employee Management System 1.0. Affected by this issue is some unknown functionality of the file /empproject.php. The manipulation of the argument ID leads to cross site scripting. It is possible to initiate the attack remotely.…

  • CVE-2026-9418MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /changepassemp.php. Executing a manipulation of the argument ID can lead to cross site scripting. The attack may be performed from…

  • CVE-2026-9417MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Employee Management System 1.0. Affected is an unknown function of the file /myprofileup.php. Performing a manipulation of the argument ID results in cross site scripting. The attack is possible to be carried out remotely. The…

  • CVE-2026-9416MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in code-projects Employee Management System 1.0. This impacts an unknown function of the file /myprofile.php. Such manipulation of the argument ID leads to cross site scripting. The attack can be executed remotely. The exploit has been…

  • CVE-2026-9415MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    A weakness has been identified in code-projects Employee Management System 1.0. This affects an unknown function of the file /eloginwel.php. This manipulation of the argument ID causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made…

  • CVE-2026-7116MedApr 27, 2026
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in code-projects Employee Management System 1.0. This issue affects some unknown processing of the file 370project/mark.php. Performing a manipulation results in cross site scripting. Remote exploitation of the attack is possible. The exploit…

  • CVE-2026-7108MedApr 27, 2026
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in code-projects Invoice System in Laravel 1.0. This affects an unknown function. Such manipulation leads to cross-site request forgery. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.

  • CVE-2026-7095MedApr 27, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in code-projects Employee Management System 1.0. This affects an unknown part of the file 370project/edit.php. The manipulation of the argument ID leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is…

  • CVE-2026-7089MedApr 27, 2026
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in code-projects Home Service System 1.0. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The manipulation of the argument fname/lname leads to cross site scripting. The attack…

  • CVE-2026-6159MedApr 13, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Simple ChatBox up to 1.0. Affected by this vulnerability is an unknown functionality of the file /chatbox/insert.php of the component Endpoint. Such manipulation of the argument msg leads to cross site scripting. The attack may be…

  • CVE-2026-6150MedApr 13, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /checkupdatestatus.php. The manipulation of the argument serviceId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2026-6035MedApr 10, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Vehicle Showroom Management System 1.0. The affected element is an unknown function of the file /BranchManagement/ServiceAndSalesReport.php. The manipulation of the argument BRANCH_ID leads to cross site scripting. Remote…

  • CVE-2026-6034MedApr 10, 2026
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in code-projects Vehicle Showroom Management System 1.0. Impacted is an unknown function of the file /BranchManagement/ProfitAndLossReport.php. Executing a manipulation of the argument BRANCH_ID can lead to cross site scripting. The attack may be launched…

  • CVE-2026-6032MedApr 10, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /checkcheckout.php. Performing a manipulation of the argument serviceId results in cross site scripting. The attack is possible to be carried out remotely. The…

  • CVE-2026-5960MedApr 9, 2026
    risk 0.28cvss 4.3epss 0.00

    A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executing a manipulation can lead to information disclosure. The attack can be launched…

  • CVE-2026-5826MedApr 9, 2026
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /edit-category.php. Executing a manipulation of the argument Category can lead to cross site scripting. The attack can be launched remotely. The exploit…

  • CVE-2026-5825MedApr 9, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /delmemberinfo.php. Performing a manipulation of the argument userid results in cross site scripting. The attack can be initiated remotely. The exploit is…

  • CVE-2026-5542MedApr 5, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was determined in code-projects Simple Laundry System 1.0. Impacted is an unknown function of the file /modstaffinfo.php of the component Parameter Handler. Executing a manipulation of the argument userid can lead to cross site scripting. The attack may be…

  • CVE-2026-5541MedApr 5, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects Simple Laundry System 1.0. This issue affects some unknown processing of the file /modmemberinfo.php of the component Parameter Handler. Performing a manipulation of the argument userid results in cross site scripting. The attack may be…

  • CVE-2026-5539MedApr 5, 2026
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /modifymember.php of the component Parameter Handler. This manipulation of the argument firstName causes cross site scripting. The attack can be initiated remotely. The…

  • CVE-2026-5255MedApr 1, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /delstaffinfo.php of the component Parameter Handler. The manipulation of the argument userid results in cross site scripting. The attack may be launched remotely.…

  • CVE-2026-5240MedApr 1, 2026
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. This affects an unknown part of the file /admin_state.php. The manipulation of the argument statename leads to cross site scripting. It is possible to initiate the attack remotely. The…

  • CVE-2026-5157MedMar 31, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument cust_id leads to cross site scripting. The attack may be performed from…

  • CVE-2026-4898MedMar 26, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /dbfood/contact.php. The manipulation of the argument Name leads to cross site scripting. It is possible to initiate the attack…

  • CVE-2026-4849MedMar 26, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /modify.php of the component Parameter Handler. The manipulation of the argument firstName leads to cross site scripting. The attack may be initiated remotely.…

  • CVE-2026-4557MedMar 22, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Exam Form Submission 1.0. This impacts an unknown function of the file /admin/update_s1.php. Performing a manipulation of the argument sname results in cross site scripting. The attack may be initiated remotely. The exploit is now…

  • CVE-2026-0586MedJan 5, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulation of the argument cat results in cross site scripting. The attack is possible…

  • CVE-2025-15213MedDec 30, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /download.php of the component File Download Handler. The manipulation of the argument store_id leads to improper authorization. The attack…

  • CVE-2025-14962MedDec 19, 2025
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown function of the file /market/chatuser.php. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may…

  • CVE-2025-14531MedDec 11, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects Rental Management System 2.0. This affects an unknown function of the file Transaction.java of the component Log Handler. Performing manipulation results in crlf injection. The attack can be initiated remotely. The exploit has been made…

  • CVE-2025-12302MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in code-projects Simple Food Ordering System 1.0. The affected element is an unknown function of the file /editproduct.php. Performing manipulation of the argument pname/category/price results in cross site scripting. The attack may be initiated…

  • CVE-2025-12300MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A weakness has been identified in code-projects Simple Food Ordering System 1.0. This issue affects some unknown processing of the file /addcategory.php. This manipulation of the argument cname causes cross site scripting. The attack can be initiated remotely. The exploit has…

  • CVE-2025-12299MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument pname/category/price results in cross site scripting. It is possible to launch the attack…

  • CVE-2025-12298MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in code-projects Simple Food Ordering System 1.0. This affects an unknown part of the file /editcategory.php. The manipulation of the argument pname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is…

  • CVE-2025-12283MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited.

  • CVE-2025-11512MedOct 9, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/voters_add.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed…

  • CVE-2025-8335MedJul 30, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the…

  • CVE-2025-7756MedJul 17, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic has been found in code-projects E-Commerce Site 1.0. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and…

  • CVE-2025-5766MedJun 6, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects Laundry System 1.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public…

  • CVE-2026-10299LowJun 1, 2026
    risk 0.25cvss 3.8epss 0.00

    A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument delid causes improper control of resource identifiers. The attack can be…

  • CVE-2026-7103LowApr 27, 2026
    risk 0.24cvss 3.7epss 0.00

    A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file update_user.php of the component MD5 Hash Handler. This manipulation of the argument Password causes use of weak hash. The attack is possible to be carried out remotely.…

  • CVE-2025-11609LowOct 11, 2025
    risk 0.24cvss 3.7epss 0.00

    A flaw has been found in code-projects Hospital Management System 1.0. Affected is the function session of the component express-session. This manipulation of the argument secret with the input secret causes use of hard-coded cryptographic key . The attack can be initiated…

  • CVE-2026-7222LowApr 28, 2026
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes…

  • CVE-2026-7110LowApr 27, 2026
    risk 0.23cvss 3.5epss 0.00

    A flaw has been found in code-projects Invoice System in Laravel 1.0. Affected is an unknown function of the file /item. Executing a manipulation of the argument item name/description can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has…

Page 11 of 24