Codezips — Vulnerabilities & Security Advisories 76

Browse all 76 CVE security advisories affecting Codezips. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Codezips operates as a software development and IT services provider, primarily focusing on custom application development and digital transformation solutions for enterprise clients. Despite its service-oriented model, the organization has accumulated a significant security footprint, with seventy-six Common Vulnerabilities and Exposures (CVEs) currently on record. These vulnerabilities predominantly stem from legacy codebases and third-party dependencies, manifesting as critical Remote Code Execution (RCE) flaws, Cross-Site Scripting (XSS) injections, and broken access control issues that allow privilege escalation. The high volume of disclosed CVEs suggests systemic gaps in secure coding practices and rigorous vulnerability management protocols within their development lifecycle. While no single catastrophic data breach has been publicly attributed to these specific flaws, the persistent presence of high-severity vulnerabilities indicates a reactive rather than proactive security posture, posing ongoing risks to client data integrity and system availability.

CVEs 76

CVE ID	Title	CVSS	Severity	Published
CVE-2024-12794	Codezips E-Commerce Site editorder.php sql injection — E-Commerce SiteCWE-89	6.3	Medium	2024-12-19
CVE-2024-12792	Codezips E-Commerce Site newadmin.php sql injection — E-Commerce SiteCWE-89	7.3	High	2024-12-19
CVE-2024-12791	Codezips E-Commerce Site signin.php sql injection — E-Commerce SiteCWE-89	7.3	High	2024-12-19
CVE-2024-12788	Codezips Technical Discussion Forum signinpost.php sql injection — Technical Discussion ForumCWE-89	7.3	High	2024-12-19
CVE-2024-12484	Codezips Technical Discussion Forum signuppost.php sql injection — Technical Discussion ForumCWE-89	7.3	High	2024-12-11
CVE-2024-12231	CodeZips Project Management System index.php sql injection — Project Management SystemCWE-89	7.3	High	2024-12-05
CVE-2024-11663	Codezips E-Commerce Site search.php sql injection — E-Commerce SiteCWE-89	7.3	High	2024-11-25
CVE-2024-11661	Codezips Free Exam Hall Seating Management System Profile Image profile.php unrestricted upload — Free Exam Hall Seating Management SystemCWE-434	4.3	Medium	2024-11-25
CVE-2024-11057	Codezips Hospital Appointment System removeBranchResult.php sql injection — Hospital Appointment SystemCWE-89	7.3	High	2024-11-10
CVE-2024-10995	Codezips Hospital Appointment System removeDoctorResult.php sql injection — Hospital Appointment SystemCWE-89	7.3	High	2024-11-08
CVE-2024-10994	Codezips Online Institute Management System edit_user.php unrestricted upload — Online Institute Management SystemCWE-434	6.3	Medium	2024-11-08
CVE-2024-10993	Codezips Online Institute Management System manage_website.php unrestricted upload — Online Institute Management SystemCWE-434	6.3	Medium	2024-11-08
CVE-2024-10991	Codezips Hospital Appointment System editBranchResult.php sql injection — Hospital Appointment SystemCWE-89	7.3	High	2024-11-08
CVE-2024-10791	Codezips Hospital Appointment System doctorAction.php sql injection — Hospital Appointment SystemCWE-89	7.3	High	2024-11-04
CVE-2024-10766	Codezips Free Exam Hall Seating Management System save_user.php unrestricted upload — Free Exam Hall Seating Management SystemCWE-434	6.3	Medium	2024-11-04
CVE-2024-10765	Codezips Online Institute Management System profile.php unrestricted upload — Online Institute Management SystemCWE-434	6.3	Medium	2024-11-04
CVE-2024-10764	Codezips Online Institute Management System save_user.php unrestricted upload — Online Institute Management SystemCWE-434	6.3	Medium	2024-11-04
CVE-2024-10752	Codezips Pet Shop Management System productsadd.php sql injection — Pet Shop Management SystemCWE-89	7.3	High	2024-11-04
CVE-2024-10751	Codezips ISP Management System pay.php sql injection — ISP Management SystemCWE-89	6.3	Medium	2024-11-04
CVE-2024-10737	Codezips Free Exam Hall Seating Management System teacher.php sql injection — Free Exam Hall Seating Management SystemCWE-89	7.3	High	2024-11-03
CVE-2024-10736	Codezips Free Exam Hall Seating Management System student.php sql injection — Free Exam Hall Seating Management SystemCWE-89	7.3	High	2024-11-03
CVE-2024-10561	Codezips Pet Shop Management System birdsupdate.php sql injection — Pet Shop Management SystemCWE-89	7.3	High	2024-10-31
CVE-2024-10556	Codezips Pet Shop Management System birdsadd.php sql injection — Pet Shop Management SystemCWE-89	7.3	High	2024-10-31
CVE-2024-10509	Codezips Online Institute Management System login.php sql injection — Online Institute Management SystemCWE-89	7.3	High	2024-10-30
CVE-2024-10507	Codezips Free Exam Hall Seating Management System login.php sql injection — Free Exam Hall Seating Management SystemCWE-89	7.3	High	2024-10-30
CVE-2024-10449	Codezips Hospital Appointment System loginAction.php sql injection — Hospital Appointment SystemCWE-89	7.3	High	2024-10-28
CVE-2024-10431	Codezips Pet Shop Management System deletebird.php sql injection — Pet Shop Management SystemCWE-89	7.3	High	2024-10-27
CVE-2024-10430	Codezips Pet Shop Management System animalsupdate.php sql injection — Pet Shop Management SystemCWE-89	7.3	High	2024-10-27
CVE-2024-10427	Codezips Pet Shop Management System deleteanimal.php sql injection — Pet Shop Management SystemCWE-89	6.3	Medium	2024-10-27
CVE-2024-10426	Codezips Pet Shop Management System animalsadd.php sql injection — Pet Shop Management SystemCWE-89	6.3	Medium	2024-10-27

This page lists every published CVE security advisory associated with Codezips. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Codezips — Vulnerabilities & Security Advisories 76