VYPR

Vendor CVEs

Code Projects

All CVEs

1,152 total · sorted by risk
  • CVE-2025-1904Mar 4, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank System 1.0. Affected by this issue is some unknown functionality of the file /Blood/A+.php. The manipulation of the argument Availibility leads to cross site scripting. The attack…

  • CVE-2025-1586Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /Blood/A-.php. The manipulation of the argument Bloodname leads to cross site scripting. The attack can be initiated…

  • CVE-2025-1579Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Blood Bank System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/user.php. The manipulation of the argument email leads to cross site scripting. The attack may be initiated remotely. The…

  • CVE-2025-1577Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank System 1.0. Affected by this issue is some unknown functionality of the file /prostatus.php. The manipulation of the argument message leads to cross site scripting. The attack may be…

  • CVE-2025-25877Feb 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data.

  • CVE-2025-25878Feb 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data.

  • CVE-2025-25875Feb 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain sensitive data.

  • CVE-2025-25876Feb 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data.

  • CVE-2023-51318Feb 20, 2025
    risk 0.00cvss epss 0.00

    PHPJabbers Bus Reservation System v1.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "title, name" parameters.

  • CVE-2023-51316Feb 20, 2025
    risk 0.00cvss epss 0.01

    A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Bus Reservation System v1.1 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.

  • CVE-2023-51319Feb 20, 2025
    risk 0.00cvss epss 0.01

    PHPJabbers Bus Reservation System v1.1 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to…

  • CVE-2025-1187Feb 12, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally…

  • CVE-2025-1164Feb 11, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Police FIR Record Management System 1.0. This issue affects some unknown processing of the component Add Record Handler. The manipulation leads to stack-based buffer overflow. Local access is…

  • CVE-2025-1163Feb 10, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical was found in code-projects Vehicle Parking Management System 1.0. This vulnerability affects the function login of the component Authentication. The manipulation of the argument username leads to stack-based buffer overflow. An attack has…

  • CVE-2024-57668Feb 6, 2025
    risk 0.00cvss epss 0.01

    In Code-projects Shopping Portal v1.0, the insert-product.php page has an arbitrary file upload vulnerability.

  • CVE-2025-0967Feb 2, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/add_chatroom.php. The manipulation of the argument chatname/chatpass leads to sql injection. The attack may be initiated remotely.…

  • CVE-2025-0882Jan 30, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Chat System up to 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /user/addnewmember.php. The manipulation of the argument user leads to sql injection. The attack can be…

  • CVE-2025-0874Jan 30, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Simple Plugins Car Rental Management 1.0. Affected by this issue is some unknown functionality of the file /admin/approve.php. The manipulation of the argument id leads to sql injection. The…

  • CVE-2025-0564Jan 19, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Fantasy-Cricket 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /authenticate.php. The manipulation of the argument uname leads to sql injection. The attack can be launched…

  • CVE-2025-0563Jan 19, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Fantasy-Cricket 1.0. It has been classified as critical. Affected is an unknown function of the file /dash/update.php. The manipulation of the argument uname leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-0538Jan 17, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, was found in code-projects Tourism Management System 1.0. Affected is an unknown function of the file /admin/manage-pages.php. The manipulation of the argument pgedetails leads to cross site scripting. It is possible to…

  • CVE-2025-0537Jan 17, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Car Rental Management System 1.0. This issue affects some unknown processing of the file /admin/manage-pages.php. The manipulation of the argument pgdetails leads to cross site scripting. The…

  • CVE-2025-0531Jan 17, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/leaveroom.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has…

  • CVE-2025-0529Jan 17, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Train Ticket Reservation System 1.0. This affects an unknown part of the component Login Form. The manipulation of the argument username leads to stack-based buffer overflow. Attacking locally is a…

  • CVE-2025-0527Jan 17, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in code-projects Admission Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /signupconfirm.php. The manipulation of the argument in_eml leads to sql injection. The attack can be…

  • CVE-2024-57488Jan 13, 2025
    risk 0.00cvss epss 0.00

    Code-Projects Online Car Rental System 1.0 is vulnerable to Cross Site Scripting (XSS) via the vehicalorcview parameter in /admin/edit-vehicle.php.

  • CVE-2025-0347Jan 9, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Admission Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php of the component Login. The manipulation of the argument u_id leads to sql injection. The attack can be…

  • CVE-2025-0346Jan 9, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Content Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/publishnews.php of the component Publish News Page. The manipulation of the argument image leads to unrestricted upload.…

  • CVE-2025-0340Jan 9, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in code-projects Cinema Seat Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/deleteBooking.php. The manipulation of the argument id leads to sql injection. The attack can be…

  • CVE-2025-0339Jan 9, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in code-projects Online Bike Rental 1.0. Affected is an unknown function of the file /vehical-details.php of the component HTTP GET Request Handler. The manipulation leads to cross site scripting. It is possible to launch…

  • CVE-2025-0335Jan 9, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Online Bike Rental System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the component Change Image Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely.…

  • CVE-2025-0301Jan 7, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in code-projects Online Book Shop 1.0. Affected by this issue is some unknown functionality of the file /subcat.php. The manipulation of the argument catnm leads to cross site scripting. The attack may be…

  • CVE-2025-0300Jan 7, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in code-projects Online Book Shop 1.0. Affected by this vulnerability is an unknown functionality of the file /subcat.php. The manipulation of the argument cat leads to sql injection. The attack can be launched remotely. The…

  • CVE-2025-0299Jan 7, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in code-projects Online Book Shop 1.0. Affected is an unknown function of the file /search_result.php. The manipulation of the argument s leads to sql injection. It is possible to launch the attack remotely. The exploit has…

  • CVE-2025-0298Jan 7, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Online Book Shop 1.0. It has been rated as critical. This issue affects some unknown processing of the file /process_login.php. The manipulation of the argument usernm leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-0297Jan 7, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Online Book Shop 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /detail.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has…

  • CVE-2025-0296Jan 7, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Online Book Shop 1.0. It has been classified as critical. This affects an unknown part of the file /booklist.php. The manipulation of the argument subcatid leads to sql injection. It is possible to initiate the attack remotely. The…

  • CVE-2025-0295Jan 7, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Online Book Shop 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /booklist.php?subcatid=1. The manipulation of the argument subcatnm leads to cross site scripting. The attack may be…

  • CVE-2025-0230Jan 5, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file /admin/print.php. The manipulation of the argument pid leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-0229Jan 5, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Travel Management System 1.0. This issue affects some unknown processing of the file /enquiry.php. The manipulation of the argument pid/t1/t2/t3/t4/t5/t6/t7 leads to sql injection. The attack may…

  • CVE-2025-0228Jan 5, 2025
    risk 0.00cvss epss 0.00

    A vulnerability has been found in code-projects Local Storage Todo App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /js-todo-app/index.html. The manipulation of the argument Add leads to cross site scripting. The attack can be initiated…

  • CVE-2025-0208Jan 4, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /summary.php. The manipulation of the argument tid leads to sql injection. It is possible to initiate the attack remotely. The exploit…

  • CVE-2025-0207Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /function/login.php. The manipulation of the argument password leads to sql injection. The attack may be…

  • CVE-2025-0206Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit…

  • CVE-2025-0205Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in code-projects Online Shoe Store 1.0. Affected is an unknown function of the file /details2.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2025-0204Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Online Shoe Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has…

  • CVE-2025-0203Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in code-projects Student Management System 1.0. It has been declared as critical. This vulnerability affects the function showSubject1 of the file /config/DbFunction.php. The manipulation of the argument sid leads to sql injection. The attack can be…

  • CVE-2025-0201Jan 4, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user/update_account.php. The manipulation of the argument username leads to sql injection.…

  • CVE-2025-0200Jan 4, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /user/search_num.php. The manipulation of the argument search leads to sql…

  • CVE-2025-0199Jan 3, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minus_cart.php. The manipulation of the argument id leads to sql injection. It is possible to…

Page 16 of 24