code-projects — Vulnerabilities & Security Advisories 1240

Browse all 1240 CVE security advisories affecting code-projects. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Code-projects is a software development platform primarily serving as a repository for user-generated code snippets, tutorials, and project files. Historically, the platform has been associated with a significant volume of security vulnerabilities, currently totaling 1238 CVEs. These flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation issues, often stemming from insecure handling of uploaded files or inadequate input validation within user-submitted scripts. The high number of recorded vulnerabilities suggests systemic weaknesses in the platform’s code review and deployment processes, allowing malicious actors to exploit exposed endpoints. While specific major incidents are rarely publicized as widespread breaches, the sheer quantity of CVEs indicates a persistent risk for users downloading and executing unverified code from the site. This environment necessitates rigorous sandboxing and verification practices for any developer interacting with the platform’s resources.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-13075	code-projects Responsive Hotel Site usersettingdel.php sql injection — Responsive Hotel SiteCWE-89	4.7	Medium	2025-11-12
CVE-2025-12928	code-projects Online Job Search Engine login.php sql injection — Online Job Search EngineCWE-89	7.3	High	2025-11-10
CVE-2025-12913	code-projects Responsive Hotel Site roomdel.php sql injection — Responsive Hotel SiteCWE-89	4.7	Medium	2025-11-08
CVE-2025-12857	code-projects Responsive Hotel Site roombook.php sql injection — Responsive Hotel SiteCWE-89	4.7	Medium	2025-11-07
CVE-2025-12856	code-projects Responsive Hotel Site reservation.php sql injection — Responsive Hotel SiteCWE-89	4.7	Medium	2025-11-07
CVE-2025-12855	code-projects Responsive Hotel Site newsletterdel.php sql injection — Responsive Hotel SiteCWE-89	4.7	Medium	2025-11-07
CVE-2025-12594	code-projects Simple Online Hotel Reservation System add_account.php sql injection — Simple Online Hotel Reservation SystemCWE-89	4.7	Medium	2025-11-02
CVE-2025-12593	code-projects Simple Online Hotel Reservation System Photo edit_room.php unrestricted upload — Simple Online Hotel Reservation SystemCWE-434	4.7	Medium	2025-11-02
CVE-2025-12378	code-projects Simple Food Ordering System addproduct.php unrestricted upload — Simple Food Ordering SystemCWE-434	7.3	High	2025-10-28
CVE-2025-12335	code-projects E-Commerce Website supplier_update.php cross site scripting — E-Commerce WebsiteCWE-79	4.3	Medium	2025-10-27
CVE-2025-12334	code-projects E-Commerce Website product_add.php cross site scripting — E-Commerce WebsiteCWE-79	4.3	Medium	2025-10-27
CVE-2025-12333	code-projects E-Commerce Website supplier_add.php cross site scripting — E-Commerce WebsiteCWE-79	4.3	Medium	2025-10-27
CVE-2025-12316	code-projects Courier Management System edit-courier.php sql injection — Courier Management SystemCWE-89	7.3	High	2025-10-27
CVE-2025-12315	code-projects Food Ordering System menu.php sql injection — Food Ordering SystemCWE-89	4.7	Medium	2025-10-27
CVE-2025-12314	code-projects Food Ordering System deleteitem.php sql injection — Food Ordering SystemCWE-89	4.7	Medium	2025-10-27
CVE-2025-12309	code-projects Nero Social Networking Site friendprofile.php sql injection — Nero Social Networking SiteCWE-89	7.3	High	2025-10-27
CVE-2025-12308	code-projects Nero Social Networking Site deletemessage.php sql injection — Nero Social Networking SiteCWE-89	7.3	High	2025-10-27
CVE-2025-12307	code-projects Nero Social Networking Site addfriend.php sql injection — Nero Social Networking SiteCWE-89	7.3	High	2025-10-27
CVE-2025-12306	code-projects Nero Social Networking Site acceptoffres.php sql injection — Nero Social Networking SiteCWE-89	7.3	High	2025-10-27
CVE-2025-12302	code-projects Simple Food Ordering System editproduct.php cross site scripting — Simple Food Ordering SystemCWE-79	4.3	Medium	2025-10-27
CVE-2025-12301	code-projects Simple Food Ordering System editproduct.php unrestricted upload — Simple Food Ordering SystemCWE-434	7.3	High	2025-10-27
CVE-2025-12300	code-projects Simple Food Ordering System addcategory.php cross site scripting — Simple Food Ordering SystemCWE-79	4.3	Medium	2025-10-27
CVE-2025-12299	code-projects Simple Food Ordering System addproduct.php cross site scripting — Simple Food Ordering SystemCWE-79	4.3	Medium	2025-10-27
CVE-2025-12298	code-projects Simple Food Ordering System editcategory.php cross site scripting — Simple Food Ordering SystemCWE-79	4.3	Medium	2025-10-27
CVE-2025-12283	code-projects Client Details System authorization — Client Details SystemCWE-639	4.3	Medium	2025-10-27
CVE-2025-12282	code-projects Client Details System manage-users.php cross site scripting — Client Details SystemCWE-79	2.4	Low	2025-10-27
CVE-2025-12281	code-projects Client Details System clientview.php cross site scripting — Client Details SystemCWE-79	2.4	Low	2025-10-27
CVE-2025-12280	code-projects Client Details System update-clients.php cross site scripting — Client Details SystemCWE-79	2.4	Low	2025-10-27
CVE-2025-12279	code-projects Client Details System welcome.php cross site scripting — Client Details SystemCWE-79	2.4	Low	2025-10-27
CVE-2025-12263	code-projects Online Event Judging System edit_judge.php sql injection — Online Event Judging SystemCWE-89	6.3	Medium	2025-10-27

This page lists every published CVE security advisory associated with code-projects. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

code-projects — Vulnerabilities & Security Advisories 1240