VYPR

Vendor CVEs

Code Projects

All CVEs

1,152 total · sorted by risk
  • CVE-2026-4969LowMar 27, 2026
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was identified in code-projects Social Networking Site 1.0. The impacted element is an unknown function of the file /home.php of the component Alert Handler. The manipulation of the argument content leads to cross site scripting. Remote exploitation of the attack…

  • CVE-2025-14194LowDec 7, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /view_personnel.php. The manipulation of the argument per_address/dr_school/other_school leads to cross site scripting. The attack may…

  • CVE-2025-13202LowNov 15, 2025
    risk 0.23cvss 3.5epss 0.00

    A security flaw has been discovered in code-projects Simple Cafe Ordering System 1.0. This affects an unknown part of the file /add_to_cart. Performing manipulation of the argument product_name results in cross site scripting. It is possible to initiate the attack remotely. The…

  • CVE-2025-11421LowOct 8, 2025
    risk 0.23cvss 3.5epss 0.00

    A flaw has been found in code-projects Voting System 1.0. The affected element is an unknown function of the file /admin/candidates_edit.php. This manipulation of the argument Firstname/Lastname/Platform causes cross site scripting. Remote exploitation of the attack is possible.…

  • CVE-2025-11124LowSep 28, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in code-projects Project Monitoring System 1.0. Affected is an unknown function of the file /onlineJobSearchEngine/postjob.php. Such manipulation of the argument txtapplyto leads to cross site scripting. The attack may be launched remotely. The…

  • CVE-2025-10837LowSep 23, 2025
    risk 0.23cvss 3.5epss 0.00

    A security vulnerability has been detected in code-projects Simple Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /ordersimple/order.php. The manipulation of the argument ID leads to cross site scripting. The attack may be…

  • CVE-2025-9845LowSep 3, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in code-projects Fruit Shop Management System 1.0. Affected by this vulnerability is an unknown functionality of the file products.php. Such manipulation of the argument product_code/gen_name/product_name/supplier leads to cross site scripting. It…

  • CVE-2025-8501LowAug 3, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic has been found in code-projects Human Resource Integrated System 1.0. Affected is an unknown function of the file /insert-and-view/action.php. The manipulation of the argument content leads to cross site scripting. It is possible to…

  • CVE-2025-7951LowJul 22, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic has been found in code-projects Public Chat Room 1.0. This affects an unknown part of the file /send_message.php. The manipulation of the argument chat_msg/your_name leads to cross site scripting. It is possible to initiate the attack…

  • CVE-2025-5797LowJun 6, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in code-projects Laundry System 1.0 and classified as problematic. This issue affects some unknown processing of the file /data/insert_type.php. The manipulation of the argument Type leads to cross site scripting. The attack may be initiated remotely.…

  • CVE-2025-5796LowJun 6, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in code-projects Laundry System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /data/edit_type.php. The manipulation of the argument Type leads to cross site scripting. The attack can be initiated remotely.…

  • CVE-2025-5765LowJun 6, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in code-projects Laundry System 1.0. It has been classified as problematic. This affects an unknown part of the file /data/edit_laundry.php. The manipulation of the argument Customer leads to cross site scripting. It is possible to initiate the attack…

  • CVE-2025-5764LowJun 6, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in code-projects Laundry System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /data/insert_laundry.php. The manipulation of the argument Customer leads to cross site scripting. The attack may be…

  • CVE-2026-7090LowApr 27, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was detected in code-projects Chat System 1.0. This affects an unknown function of the file /admin/send_message.php of the component Chat Interface. The manipulation of the argument msg results in cross site scripting. The attack may be launched remotely. The…

  • CVE-2026-6184LowApr 13, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects Simple Content Management System 1.0. This affects an unknown part of the file /web/admin/welcome.php. Executing a manipulation of the argument News Title can lead to cross site scripting. The attack can be executed remotely. The…

  • CVE-2026-6003LowApr 10, 2026
    risk 0.16cvss 2.4epss 0.00

    A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /admin/user.php. Such manipulation of the argument fname leads to cross site scripting. The attack may be performed from remote. The…

  • CVE-2026-5836LowApr 9, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /admin/admin_product.php. The manipulation of the argument product_name leads to cross site scripting. The attack can be initiated remotely.…

  • CVE-2026-5835LowApr 9, 2026
    risk 0.16cvss 2.4epss 0.00

    A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_football.php. Executing a manipulation of the argument product_name can lead to cross site scripting. It is possible to launch the…

  • CVE-2026-5834LowApr 9, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was detected in code-projects Online Shoe Store 1.0. Affected is an unknown function of the file /admin/admin_running.php. Performing a manipulation of the argument product_name results in cross site scripting. It is possible to initiate the attack remotely. The…

  • CVE-2026-5106LowMar 30, 2026
    risk 0.16cvss 2.4epss 0.00

    A flaw has been found in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file /admin/update_fst.php. Executing a manipulation of the argument sname can lead to cross site scripting. It is possible to launch the attack remotely. The…

  • CVE-2026-4909LowMar 27, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects Exam Form Submission 1.0. This impacts an unknown function of the file /admin/update_s7.php. This manipulation of the argument sname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been…

  • CVE-2026-4899LowMar 26, 2026
    risk 0.16cvss 2.4epss 0.00

    A security flaw has been discovered in code-projects Online Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /dbfood/food.php. The manipulation of the argument cuisines results in cross site scripting. It is possible to launch the attack…

  • CVE-2026-4595LowMar 23, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was determined in code-projects Exam Form Submission 1.0. This vulnerability affects unknown code of the file /admin/update_s6.php. Executing a manipulation of the argument sname can lead to cross site scripting. The attack can be launched remotely. The exploit…

  • CVE-2026-4578LowMar 23, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was determined in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file /admin/update_s3.php. Executing a manipulation of the argument sname can lead to cross site scripting. The attack may be launched remotely. The…

  • CVE-2026-4577LowMar 23, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Exam Form Submission 1.0. The affected element is an unknown function of the file /admin/update_s4.php. Performing a manipulation of the argument sname results in cross site scripting. The attack may be initiated remotely. The exploit…

  • CVE-2026-4576LowMar 23, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability has been found in code-projects Exam Form Submission 1.0. Impacted is an unknown function of the file /admin/update_s5.php. Such manipulation of the argument sname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed…

  • CVE-2026-4575LowMar 23, 2026
    risk 0.16cvss 2.4epss 0.00

    A flaw has been found in code-projects Exam Form Submission 1.0. This issue affects some unknown processing of the file /admin/update_s2.php. This manipulation of the argument sname causes cross site scripting. The attack can be initiated remotely. The exploit has been published…

  • CVE-2026-2214LowFeb 9, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2026-2156LowFeb 8, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects Online Student Management System 1.0. The impacted element is an unknown function of the file /admin/announcement/index.php?view=add of the component Announcement Management Module. This manipulation causes cross site scripting.…

  • CVE-2025-14663LowDec 14, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was determined in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/update_student.php. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit has been…

  • CVE-2025-14662LowDec 14, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The…

  • CVE-2025-14205LowDec 8, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Chamber of Commerce Membership Management System 1.0. Impacted is an unknown function of the file /membership_profile.php of the component Your Info Handler. Performing manipulation of the argument Full Name/Address/City/State results…

  • CVE-2025-12282LowOct 27, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was identified in code-projects Client Details System 1.0. The affected element is an unknown function of the file /admin/manage-users.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit is publicly available and…

  • CVE-2025-12281LowOct 27, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was determined in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/clientview.php. Executing manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly…

  • CVE-2025-12280LowOct 27, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file /update-clients.php. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made…

  • CVE-2025-12279LowOct 27, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and…

  • CVE-2025-9929LowSep 4, 2025
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects Responsive Blog Site 1.0. This affects an unknown function of the file blogs_view.php. Executing manipulation of the argument product_code/gen_name/product_name/supplier can lead to cross site scripting. It is possible to launch…

  • CVE-2025-9921LowSep 3, 2025
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in code-projects POS Pharmacy System 1.0. Affected is an unknown function of the file /main/products.php. This manipulation of the argument product_code/gen_name/product_name/supplier causes cross site scripting. The attack can be initiated…

  • CVE-2025-8337LowJul 30, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/add_vehicles.php. The manipulation of the argument car_name leads to cross site scripting. The attack…

  • CVE-2025-6778LowJun 27, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability, which was classified as problematic, was found in code-projects Food Distributor Site 1.0. Affected is an unknown function of the file /admin/save_settings.php. The manipulation of the argument site_phone/site_email/address leads to cross site scripting. It is…

  • CVE-2024-57487Jan 13, 2025
    risk 0.08cvss epss 0.02

    In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or MIME types allowing an attacker to upload a PHP shell without any restrictions and execute commands on the server.

  • CVE-2022-30512May 27, 2022
    risk 0.06cvss epss 0.10

    School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/payment_history.php:31.

  • CVE-2020-25762Sep 29, 2020
    risk 0.04cvss epss 0.11

    An issue was discovered in SourceCodester Seat Reservation System 1.0. The file admin_class.php does not perform input validation on the username and password parameters. An attacker can send malicious input in the post request to /admin/ajax.php?action=login and bypass…

  • CVE-2025-28121Apr 21, 2025
    risk 0.03cvss epss 0.01

    code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in feedback.php via the "q" parameter allowing remote attackers to execute arbitrary code.

  • CVE-2024-10758Nov 4, 2024
    risk 0.03cvss epss 0.01

    A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument user_name leads to sql injection. It is possible to…

  • CVE-2023-46022Nov 14, 2023
    risk 0.03cvss epss 0.01

    SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter.

  • CVE-2001-0216Jun 2, 2001
    risk 0.03cvss epss 0.04

    PALS Library System pals-cgi program allows remote attackers to execute arbitrary commands via shell metacharacters in the documentName parameter.

  • CVE-2024-10140Oct 19, 2024
    risk 0.02cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /manage_supplier.php. The manipulation of the argument id leads to sql injection. The attack may be…

  • CVE-2022-30511May 27, 2022
    risk 0.02cvss epss 0.04

    School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/view_details.php:4.

  • CVE-2022-30510May 27, 2022
    risk 0.02cvss epss 0.04

    School Dormitory Management System 1.0 is vulnerable to SQL Injection via reports/daily_collection_report.php:59.

Page 12 of 24