code-projects — Vulnerabilities & Security Advisories 1240

Browse all 1240 CVE security advisories affecting code-projects. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Code-projects is a software development platform primarily serving as a repository for user-generated code snippets, tutorials, and project files. Historically, the platform has been associated with a significant volume of security vulnerabilities, currently totaling 1238 CVEs. These flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation issues, often stemming from insecure handling of uploaded files or inadequate input validation within user-submitted scripts. The high number of recorded vulnerabilities suggests systemic weaknesses in the platform’s code review and deployment processes, allowing malicious actors to exploit exposed endpoints. While specific major incidents are rarely publicized as widespread breaches, the sheer quantity of CVEs indicates a persistent risk for users downloading and executing unverified code from the site. This environment necessitates rigorous sandboxing and verification practices for any developer interacting with the platform’s resources.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-0485	code-projects Fighting Cock Information System add_con.php sql injection — Fighting Cock Information SystemCWE-89	6.3	Medium	2024-01-13
CVE-2024-0484	code-projects Fighting Cock Information System update_mother.php sql injection — Fighting Cock Information SystemCWE-89	6.3	Medium	2024-01-13
CVE-2024-0478	code-projects Fighting Cock Information System edit_chicken.php sql injection — Fighting Cock Information SystemCWE-89	6.3	Medium	2024-01-13
CVE-2024-0477	code-projects Fighting Cock Information System update-deworm.php sql injection — Fighting Cock Information SystemCWE-89	6.3	Medium	2024-01-13
CVE-2024-0475	code-projects Dormitory Management System modifyuser.php sql injection — Dormitory Management SystemCWE-89	6.3	Medium	2024-01-13
CVE-2024-0474	code-projects Dormitory Management System login.php sql injection — Dormitory Management SystemCWE-89	7.3	High	2024-01-12
CVE-2024-0473	code-projects Dormitory Management System comment.php sql injection — Dormitory Management SystemCWE-89	6.3	Medium	2024-01-12
CVE-2024-0472	code-projects Dormitory Management System modifyuser.php information disclosure — Dormitory Management SystemCWE-200	3.5	Low	2024-01-12
CVE-2024-0471	code-projects Human Resource Integrated System dec_service_credits.php sql injection — Human Resource Integrated SystemCWE-89	6.3	Medium	2024-01-12
CVE-2024-0470	code-projects Human Resource Integrated System inc_service_credits.php sql injection — Human Resource Integrated SystemCWE-89	6.3	Medium	2024-01-12
CVE-2024-0469	code-projects Human Resource Integrated System update_personal_info.php sql injection — Human Resource Integrated SystemCWE-89	6.3	Medium	2024-01-12
CVE-2024-0468	code-projects Fighting Cock Information System new-father.php unrestricted upload — Fighting Cock Information SystemCWE-434	6.3	Medium	2024-01-12
CVE-2024-0467	code-projects Employee Profile Management System edit_position_query.php cross site scripting — Employee Profile Management SystemCWE-79	3.5	Low	2024-01-12
CVE-2024-0466	code-projects Employee Profile Management System file_table.php sql injection — Employee Profile Management SystemCWE-89	5.5	Medium	2024-01-12
CVE-2024-0465	code-projects Employee Profile Management System download.php path traversal — Employee Profile Management SystemCWE-24	3.5	Low	2024-01-12
CVE-2024-0464	code-projects Online Faculty Clearance HTTP GET Request delete_faculty.php sql injection — Online Faculty ClearanceCWE-89	6.3	Medium	2024-01-12
CVE-2024-0463	code-projects Online Faculty Clearance HTTP POST Request admin_view_info.php sql injection — Online Faculty ClearanceCWE-89	6.3	Medium	2024-01-12
CVE-2024-0462	code-projects Online Faculty Clearance HTTP POST Request designee_view_status.php sql injection — Online Faculty ClearanceCWE-89	6.3	Medium	2024-01-12
CVE-2024-0461	code-projects Online Faculty Clearance HTTP POST Request deactivate.php sql injection — Online Faculty ClearanceCWE-89	6.3	Medium	2024-01-12
CVE-2024-0460	code-projects Faculty Management System student-print.php sql injection — Faculty Management SystemCWE-89	6.3	Medium	2024-01-12
CVE-2024-0359	code-projects Simple Online Hotel Reservation System login.php sql injection — Simple Online Hotel Reservation SystemCWE-89	7.3	High	2024-01-10
CVE-2023-7130	code-projects College Notes Gallery login.php sql injection — College Notes GalleryCWE-89	6.3	Medium	2023-12-31
CVE-2023-7149	code-projects QR Code Generator cross site scripting — QR Code GeneratorCWE-79	3.5	Low	2023-12-29
CVE-2023-7143	code-projects Client Details System regester.php cross site scripting — Client Details SystemCWE-79	2.4	Low	2023-12-29
CVE-2023-7142	code-projects Client Details System clientview.php sql injection — Client Details SystemCWE-89	4.3	Medium	2023-12-29
CVE-2023-7141	code-projects Client Details System update-clients.php sql injection — Client Details SystemCWE-89	4.3	Medium	2023-12-28
CVE-2023-7140	code-projects Client Details System manage-users.php sql injection — Client Details SystemCWE-89	4.3	Medium	2023-12-28
CVE-2023-7139	code-projects Client Details System HTTP POST Request regester.php sql injection — Client Details SystemCWE-89	4.3	Medium	2023-12-28
CVE-2023-7138	code-projects Client Details System HTTP POST Request admin sql injection — Client Details SystemCWE-89	6.3	Medium	2023-12-28
CVE-2023-7137	code-projects Client Details System HTTP POST Request sql injection — Client Details SystemCWE-89	6.3	Medium	2023-12-28

This page lists every published CVE security advisory associated with code-projects. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

code-projects — Vulnerabilities & Security Advisories 1240