VYPR

Vendor CVEs

Fabian

All CVEs

245 total · sorted by risk
  • CVE-2025-6403HigJun 21, 2025
    risk 0.48cvss 7.3epss 0.02

    A vulnerability was found in code-projects School Fees Payment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2026-2912HigFeb 22, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument test_id results in sql injection. It is possible to launch the…

  • CVE-2026-2223HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Reviewer System 1.0. Affected by this issue is some unknown functionality of the file /system/system/students/assessments/pretest/take/index.php. The manipulation of the argument ID leads to sql injection. It is…

  • CVE-2026-2221HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Reviewer System 1.0. Affected is an unknown function of the file /login/index.php of the component Login. Performing a manipulation of the argument Username results in sql injection. The attack is possible to be carried…

  • CVE-2026-2220HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Online Reviewer System 1.0. This impacts an unknown function of the file /system/system/admins/assessments/pretest/btn_functions.php. Such manipulation of the argument difficulty_id leads to sql injection. The attack can be…

  • CVE-2026-2212HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Online Music Site 1.0. Affected by this vulnerability is an unknown functionality of the file /Administrator/PHP/AdminEditCategory.php. The manipulation of the argument ID leads to sql injection. The attack is possible to be…

  • CVE-2026-2211HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Online Music Site 1.0. Affected is an unknown function of the file /Administrator/PHP/AdminDeleteCategory.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be executed remotely. The exploit…

  • CVE-2026-2199HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Reviewer System 1.0. The impacted element is an unknown function of the file /reviewer/system/system/admins/manage/users/user-delete.php. Performing a manipulation of the argument ID results in sql injection. The attack…

  • CVE-2026-2198HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Online Reviewer System 1.0. The affected element is an unknown function of the file /system/system/admins/assessments/pretest/loaddata.php. Such manipulation of the argument difficulty_id leads to sql injection. It is possible to…

  • CVE-2026-2197HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/admins/assessments/pretest/exam-delete.php. This manipulation of the argument test_id causes sql injection. It is possible to initiate the…

  • CVE-2026-2196HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Reviewer System 1.0. This issue affects some unknown processing of the file /system/system/admins/assessments/pretest/exam-update.php. The manipulation of the argument test_id results in sql injection. The attack may be performed…

  • CVE-2026-2195HigFeb 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in code-projects Online Reviewer System 1.0. This vulnerability affects unknown code of the file /system/system/admins/assessments/pretest/questions-view.php. The manipulation of the argument ID leads to sql injection. The attack is possible to be…

  • CVE-2026-2172HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. The…

  • CVE-2026-2171HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Student Management System 1.0. Affected is an unknown function of the file accounts.php of the component Login. Performing a manipulation of the argument username/password results in sql injection. The attack can be initiated…

  • CVE-2026-2166HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Reviewer System 1.0. The affected element is an unknown function of the file /login/index.php of the component Login. The manipulation of the argument username/password leads to sql injection. The attack is…

  • CVE-2026-2133HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in code-projects Online Music Site 1.0. Impacted is an unknown function of the file /Administrator/PHP/AdminUpdateCategory.php. This manipulation of the argument txtimage causes unrestricted upload. The attack is possible to be carried out…

  • CVE-2026-2132HigFeb 8, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Administrator/PHP/AdminUpdateCategory.php. The manipulation of the argument txtcat results in sql injection. The attack can be executed remotely.…

  • CVE-2026-2060HigFeb 6, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Simple Blood Donor Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /simpleblooddonor/editcampaignform.php. Performing a manipulation of the argument ID results in sql injection. It is…

  • CVE-2026-1535HigJan 28, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Administrator/PHP/AdminReply.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2026-1534HigJan 28, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in code-projects Online Music Site 1.0. This affects an unknown function of the file /Administrator/PHP/AdminEditUser.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2026-1443HigJan 26, 2026
    risk 0.47cvss 7.3epss 0.01

    A flaw has been found in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminDeleteUser.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has…

  • CVE-2026-1422HigJan 26, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Examination System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php of the component Login Page. Performing a manipulation of the argument User results in sql injection. The attack is…

  • CVE-2026-0852HigJan 12, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The…

  • CVE-2026-0851HigJan 12, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Online Music Site 1.0. The affected element is an unknown function of the file /Administrator/PHP/AdminAddUser.php. The manipulation of the argument txtusername leads to sql injection. Remote exploitation of the attack is possible.…

  • CVE-2026-0607HigJan 6, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminViewSongs.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-0606HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /FrontEnd/Albums.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The…

  • CVE-2026-0605HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Music Site 1.0. Affected by this vulnerability is an unknown functionality of the file /login.php. Such manipulation of the argument username/password leads to sql injection. The attack may be performed from…

  • CVE-2026-0592HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Product Reservation System 1.0. This affects an unknown function of the file /handgunner-administrator/register_code.php of the component User Registration Handler. Performing a manipulation of the argument…

  • CVE-2026-0589HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the component Administration Backend. The manipulation results in improper authentication. The attack may be performed from remote. The exploit has been made…

  • CVE-2026-0585HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the file /order_view.php of the component GET Parameter Handler. Such manipulation of the argument transaction_id leads to sql injection. The…

  • CVE-2026-0583HigJan 5, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Online Product Reservation System 1.0. This vulnerability affects unknown code of the file app/user/login.php of the component User Login. The manipulation of the argument emailadd results in sql injection. The attack may be…

  • CVE-2026-0579HigJan 4, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Product Reservation System 1.0. This affects an unknown part of the file /handgunner-administrator/edit.php of the component POST Parameter Handler. The manipulation of the argument prod_id/name/price/model/serial results in sql…

  • CVE-2026-0578HigJan 4, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in code-projects Online Product Reservation System 1.0. Affected by this issue is some unknown functionality of the file /handgunner-administrator/delete.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated…

  • CVE-2026-0576HigJan 4, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in code-projects Online Product Reservation System 1.0. Affected is an unknown function of the file /handgunner-administrator/prod.php of the component Parameter Handler. Performing a manipulation of the argument cat/price/name/model/serial results…

  • CVE-2026-0575HigJan 4, 2026
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Online Product Reservation System 1.0. This impacts an unknown function of the file /handgunner-administrator/adminlogin.php of the component Administrator Login. Such manipulation of the argument emailadd/pass leads to…

  • CVE-2026-0570HigJan 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public…

  • CVE-2026-0569HigJan 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown function of the file /Frontend/AlbumByCategory.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-0568HigJan 2, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Frontend/ViewSongs.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been…

  • CVE-2025-15208HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Refugee Food Management System 1.0. Affected by this issue is some unknown functionality of the file /home/editrefugee.php. The manipulation of the argument rfid results in sql injection. The attack can be launched remotely.…

  • CVE-2025-15186HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in code-projects Refugee Food Management System 1.0. Affected by this issue is some unknown functionality of the file /home/addusers.php. Such manipulation of the argument a leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-15185HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Refugee Food Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /home/refugeesreport.php. This manipulation of the argument a causes sql injection. It is possible to initiate the attack remotely.…

  • CVE-2025-15184HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in code-projects Refugee Food Management System 1.0. Affected is an unknown function of the file /home/refugeesreport2.php. The manipulation of the argument a results in sql injection. The attack may be performed from remote. The exploit is now…

  • CVE-2025-15183HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Refugee Food Management System 1.0. This impacts an unknown function of the file /home/viewtakenfd.php. The manipulation of the argument tfid leads to sql injection. The attack is possible to be carried out remotely.…

  • CVE-2025-15182HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an unknown function of the file /home/served.php. Executing manipulation of the argument refNo can lead to sql injection. The attack can be executed remotely. The exploit has been…

  • CVE-2025-15181HigDec 29, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Refugee Food Management System 1.0. The impacted element is an unknown function of the file /home/pagenateRefugeesList.php. Performing manipulation of the argument rfid results in sql injection. Remote exploitation of the…

  • CVE-2025-15053HigDec 24, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Student Information System 1.0. This issue affects some unknown processing of the file /searchresults.php. Executing manipulation of the argument searchbox can lead to sql injection. The attack may be performed from remote. The exploit has…

  • CVE-2025-15012HigDec 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Refugee Food Management System 1.0. The affected element is an unknown function of the file /home/home.php. This manipulation of the argument a causes sql injection. The attack is possible to be carried out remotely. The exploit…

  • CVE-2025-14961HigDec 19, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in code-projects Simple Blood Donor Management System 1.0. The affected element is an unknown function of the file /editedcampaign.php. The manipulation of the argument campaignname results in sql injection. The attack can be executed remotely. The…

  • CVE-2025-14960HigDec 19, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.0. Impacted is an unknown function of the file /editeddonor.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The…

  • CVE-2025-14951HigDec 19, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects Scholars Tracking System 1.0. The impacted element is an unknown function of the file /home.php. Such manipulation of the argument post_content leads to sql injection. The attack can be executed remotely. The exploit…

Page 1 of 5