VYPR

Vendor CVEs

Code Projects

All CVEs

1,152 total · sorted by risk
  • CVE-2026-7731MedMay 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. The affected element is an unknown function of the file get_state.php. The manipulation of the argument G_STATE_ID leads to sql injection. Remote exploitation of the attack is possible.…

  • CVE-2026-7716MedMay 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknown code of the file /index.php. Performing a manipulation of the argument day results in sql injection. The attack can be initiated remotely. The exploit…

  • CVE-2026-7229MedApr 28, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manipulation of the argument complaintreply results in sql injection. It is possible…

  • CVE-2026-7118MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Employee Management System 1.0. The affected element is an unknown function of the file 370project/cancel.php. The manipulation of the argument id/token leads to sql injection. The attack is possible to be carried out…

  • CVE-2026-7117MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Employee Management System 1.0. Impacted is an unknown function of the file 370project/approve.php. Executing a manipulation of the argument id/token can lead to sql injection. The attack can be executed remotely. The exploit has…

  • CVE-2026-7115MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in code-projects Employee Management System 1.0. This vulnerability affects unknown code of the file 370project/delete.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly…

  • CVE-2026-7114MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown part of the file 370project/edit.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed…

  • CVE-2026-7107MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Invoice System in Laravel 1.0. The impacted element is an unknown function of the file /company. This manipulation of the argument logo causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has…

  • CVE-2026-7093MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Invoice System in Laravel 1.0. Affected by this vulnerability is an unknown functionality of the file /invoice/ of the component Invoice Endpoint. Performing a manipulation of the argument ID results in improper authorization. The…

  • CVE-2026-7092MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Invoice System in Laravel 1.0. Affected is an unknown function of the file /profile/ of the component Profile Handler. Such manipulation of the argument ID leads to improper authorization. The attack can be executed remotely. The…

  • CVE-2026-7091MedApr 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Invoice System in Laravel 1.0. This impacts an unknown function of the file /user of the component User Management Handler. This manipulation causes improper authorization. Remote exploitation of the attack is possible. The exploit has been…

  • CVE-2026-6202MedApr 13, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in code-projects Easy Blog Site 1.0. This affects an unknown function of the file post.php. Performing a manipulation of the argument tags results in sql injection. The attack may be initiated remotely. The exploit has been released to the…

  • CVE-2026-6006MedApr 10, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Patient Record Management System 1.0. The impacted element is an unknown function of the file /edit_hpatient.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has…

  • CVE-2026-6005MedApr 10, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Patient Record Management System 1.0. The affected element is an unknown function of the file /hematology_print.php. Executing a manipulation of the argument hem_id can lead to sql injection. It is possible to launch the attack remotely.…

  • CVE-2026-5197MedMar 31, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Student Membership System 1.0. The affected element is an unknown function of the file /delete_user.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public…

  • CVE-2026-5196MedMar 31, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Student Membership System 1.0. Impacted is an unknown function of the file /delete_member.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the…

  • CVE-2026-4970MedMar 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file delete_photos.php of the component Endpoint. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The…

  • CVE-2026-4533MedMar 22, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file all-tickets.php. The manipulation of the argument Status results in sql injection. It is possible to launch the attack remotely. The…

  • CVE-2026-2706MedFeb 19, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Patient Record Management System 1.0. This affects an unknown function of the file /fecalysis_not.php. This manipulation of the argument comp_id causes sql injection. The attack can be initiated remotely. The exploit has been published and…

  • CVE-2026-0591MedJan 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in code-projects Online Product Reservation System 1.0. The impacted element is an unknown function of the file /app/checkout/update.php of the component Cart Update Handler. Such manipulation of the argument id/qty leads to sql injection. It is…

  • CVE-2026-0590MedJan 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file /app/checkout/delete.php of the component POST Parameter Handler. This manipulation of the argument ID causes sql injection. It is…

  • CVE-2026-0584MedJan 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Online Product Reservation System 1.0. This issue affects some unknown processing of the file app/products/left_cart.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2026-0577MedJan 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack…

  • CVE-2025-15212MedDec 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in code-projects Refugee Food Management System 1.0. This issue affects some unknown processing of the file /home/regfood.php. Performing manipulation of the argument a results in sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2025-15211MedDec 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Refugee Food Management System 1.0. Impacted is an unknown function of the file /home/refugee.php. Executing manipulation of the argument refNo/Fname/Lname/sex/age/contact/nationality_nid can lead to sql injection. The attack can be…

  • CVE-2025-15210MedDec 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Refugee Food Management System 1.0. This vulnerability affects unknown code of the file /home/editrefugee.php. Such manipulation of the argument a/b/c/sex/d/e/nationality_nid leads to sql injection. The attack may be…

  • CVE-2025-15209MedDec 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an unknown part of the file /home/editfood.php. This manipulation of the argument a/b/c/d causes sql injection. The attack may be initiated remotely. The exploit has been made…

  • CVE-2025-15205MedDec 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download.php. The manipulation of the argument istore_id leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-15199MedDec 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects College Notes Uploading System 1.0. Impacted is an unknown function of the file /dashboard/userprofile.php. The manipulation of the argument image leads to unrestricted upload. Remote exploitation of the attack is…

  • CVE-2025-15050MedDec 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /save_file.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been…

  • CVE-2025-14834MedDec 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown function of the file /checkuser.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be launched remotely. The exploit has been made…

  • CVE-2025-14589MedDec 13, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Prison Management System 2.0. This issue affects some unknown processing of the file /admin/search.php. Executing a manipulation of the argument keyname can lead to sql injection. The attack may be performed from remote. The…

  • CVE-2025-14247MedDec 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Simple Shopping Cart 1.0. This issue affects some unknown processing of the file /Admin/additems.php. Executing manipulation of the argument item_name can lead to sql injection. The attack can be executed remotely. The exploit has…

  • CVE-2025-14246MedDec 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Performing manipulation of the argument user_id results in sql injection. Remote exploitation of the attack is possible. The exploit…

  • CVE-2025-14222MedDec 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /print_personnel_report.php. This manipulation of the argument per_id causes sql injection. The attack may be initiated remotely. The exploit has been…

  • CVE-2025-14195MedDec 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in code-projects Employee Profile Management System 1.0. Impacted is an unknown function of the file /profiling/add_file_query.php. The manipulation of the argument per_file results in unrestricted upload. The attack may be launched remotely.…

  • CVE-2025-14193MedDec 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file /view_personnel.php. Executing a manipulation of the argument per_id can lead to sql injection. The attack can be launched remotely. The…

  • CVE-2025-13580MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Library System 1.0. Affected is an unknown function of the file /mail.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

  • CVE-2025-13579MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Library System 1.0. This impacts an unknown function of the file /return.php. The manipulation of the argument ID results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.

  • CVE-2025-13576MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in code-projects Blog Site 1.0. The affected element is an unknown function of the file /admin.php. Performing manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit is now public and may be used.…

  • CVE-2025-13575MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Blog Site 1.0. Impacted is the function category_exists of the file /resources/functions/blog.php of the component Category Handler. Such manipulation of the argument name/field leads to sql injection. The attack may be…

  • CVE-2025-13571MedNov 23, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /listorder.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit…

  • CVE-2025-13396MedNov 19, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in code-projects Courier Management System 1.0. This affects an unknown function of the file /add-office.php. This manipulation of the argument OfficeName causes sql injection. The attack may be initiated remotely. The exploit has been made…

  • CVE-2025-13303MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /search-edit.php. This manipulation of the argument Consignment causes sql injection. The attack can be initiated remotely. The exploit…

  • CVE-2025-13290MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /saveorder.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-13279MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Nero Social Networking Site 1.0. The affected element is an unknown function of the file /profilefriends.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has…

  • CVE-2025-12931MedNov 10, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in SourceCodester Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/edit-orders.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-12930MedNov 10, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in SourceCodester Food Ordering System 1.0. Affected is an unknown function of the file /view-ticket.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to…

  • CVE-2025-12243MedOct 27, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the file clientdetails/welcome.php of the component GET Parameter Handler. Performing manipulation of the argument ID results in sql injection. The…

  • CVE-2025-12238MedOct 27, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected element is an unknown function of the file /admin/user.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out…

Page 8 of 24