Code Projects Security Vulnerabilities (CVEs)
Track 204 security vulnerabilities affecting Code Projects products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This SQL injection vulnerability in code-projects Patient Record Management System 1.0 allows remote attackers to execute arbitrary SQL commands via t...
Feb 19, 2026This SQL injection vulnerability in code-projects Social Networking Site 1.0 allows attackers to manipulate database queries through the /delete_post....
Feb 7, 2026This SQL injection vulnerability in code-projects Content Management System 1.0 allows attackers to manipulate database queries through the /pages.php...
Jan 2, 2026This vulnerability allows remote attackers to upload arbitrary files to the code-projects CMS 1.0 system via the image parameter in the /admin/edit_po...
Jan 2, 2026This vulnerability allows remote attackers to upload arbitrary files via the image parameter in the userprofile.php file of College Notes Uploading Sy...
Dec 29, 2025CVE-2025-15198 is a SQL injection vulnerability in the College Notes Uploading System 1.0 that allows attackers to manipulate database queries through...
Dec 29, 2025CVE-2025-15196 is an SQL injection vulnerability in code-projects Assessment Management 1.0 that allows attackers to execute arbitrary SQL commands vi...
Dec 29, 2025This vulnerability allows remote attackers to upload arbitrary files to the Content Management System and News-Buzz 1.0 through the /admin/editposts.p...
Dec 29, 2025CVE-2025-15195 is a SQL injection vulnerability in code-projects Assessment Management 1.0 that allows remote attackers to execute arbitrary SQL comma...
Dec 29, 2025This vulnerability allows remote attackers to execute arbitrary SQL commands via the 'per_id' parameter in the edit_personnel.php file of Employee Pro...
Dec 9, 2025CVE-2025-13578 is an SQL injection vulnerability in code-projects Library System 1.0 that allows attackers to manipulate database queries through the ...
Nov 24, 2025This SQL injection vulnerability in code-projects Library System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in...
Nov 24, 2025CVE-2025-13580 is a SQL injection vulnerability in code-projects Library System 1.0 affecting the /mail.php file. Attackers can remotely exploit this ...
Nov 24, 2025This vulnerability is an SQL injection flaw in the Food Ordering System 1.0 by code-projects, specifically in the /admin/deleteitem.php file via the i...
Oct 27, 2025This SQL injection vulnerability in code-projects Food Ordering System 1.0 allows attackers to manipulate database queries through the itemPrice param...
Oct 27, 2025Simple Car Rental System 1.0 has a session permission bypass vulnerability that allows low-privilege users to forge high-privilege sessions and perfor...
Oct 10, 2025This vulnerability allows unauthenticated attackers to upload arbitrary files to Student Crud Operation systems, leading to remote code execution. It ...
Oct 7, 2025This vulnerability allows unauthenticated SQL injection in the Student Crud Operation 3.3 software via the delete.php file. Attackers can manipulate t...
Oct 6, 2025This SQL injection vulnerability in code-projects Human Resource Integrated System 1.0 allows attackers to manipulate database queries through the log...
Aug 31, 2025CVE-2025-9741 is an SQL injection vulnerability in code-projects Human Resource Integrated System 1.0 affecting the /login_query12.php file. Attackers...
Aug 31, 2025This SQL injection vulnerability in PHPGurukul Hospital Management System 4.0 allows attackers to manipulate database queries through the docfees para...
Aug 14, 2025This SQL injection vulnerability in PHPGurukul Hospital Management System 4.0 allows remote attackers to execute arbitrary SQL commands via the doctor...
Aug 14, 2025A critical SQL injection vulnerability exists in Simple Art Gallery 1.0's /Admin/registration.php file, specifically in the 'fname' parameter. This al...
Aug 10, 2025CVE-2025-8407 is a critical SQL injection vulnerability in code-projects Vehicle Management 1.0 that allows remote attackers to execute arbitrary SQL ...
Jul 31, 2025This critical SQL injection vulnerability in Vehicle Management 1.0 allows remote attackers to execute arbitrary SQL commands via the 'company' parame...
Jul 31, 2025This is a critical SQL injection vulnerability in Exam Form Submission 1.0 that allows attackers to manipulate database queries through the 'credits' ...
Jul 31, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the 'credits' para...
Jul 31, 2025A Cross-Site Request Forgery (CSRF) vulnerability in Simple Car Rental System 1.0 allows attackers to trick authenticated users into performing uninte...
Jul 30, 2025CVE-2025-8330 is a critical SQL injection vulnerability in Vehicle Management 1.0 that allows remote attackers to execute arbitrary SQL commands via t...
Jul 30, 2025A critical SQL injection vulnerability exists in code-projects Vehicle Management 1.0 through the 'company' parameter in /filter3.php. Attackers can r...
Jul 30, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows attackers to manipulate database queries through the /admin/delete_s8.php...
Jul 30, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter i...
Jul 30, 2025A critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the 'credits' paramet...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter i...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows attackers to execute arbitrary SQL commands via the ID parameter in /admi...
Jul 28, 2025This critical vulnerability in Exam Form Submission 1.0 allows remote attackers to upload arbitrary files via the /register.php endpoint. Attackers ca...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter i...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter i...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows attackers to manipulate database queries through the 'credits' parameter ...
Jul 28, 2025This critical SQL injection vulnerability in Exam Form Submission 1.0 allows attackers to manipulate database queries through the phone parameter in /...
Jul 27, 2025A critical SQL injection vulnerability in Exam Form Submission 1.0 allows remote attackers to execute arbitrary SQL commands via the 'credits' paramet...
Jul 27, 2025CVE-2025-7514 is a critical SQL injection vulnerability in Modern Bag 1.0 that allows remote attackers to execute arbitrary SQL commands via the idSta...
Jul 13, 2025CVE-2025-7512 is a critical SQL injection vulnerability in Modern Bag 1.0 that allows remote attackers to execute arbitrary SQL commands via the conta...
Jul 13, 2025This critical SQL injection vulnerability in Modern Bag 1.0 allows remote attackers to execute arbitrary SQL commands via the 'namepro' parameter in /...
Jul 13, 2025CVE-2025-7508 is a critical SQL injection vulnerability in Modern Bag 1.0's admin/product-update.php file that allows remote attackers to manipulate d...
Jul 13, 2025CVE-2025-7478 is a critical SQL injection vulnerability in Modern Bag 1.0 that allows remote attackers to execute arbitrary SQL commands via the idCat...
Jul 12, 2025CVE-2025-7471 is a critical SQL injection vulnerability in Modern Bag 1.0 that allows remote attackers to execute arbitrary SQL commands via the user-...
Jul 12, 2025CVE-2025-7412 is a critical unrestricted file upload vulnerability in code-projects Library System 1.0. Attackers can remotely upload malicious files ...
Jul 10, 2025This critical SQL injection vulnerability in the Student Enrollment System 1.0 allows attackers to manipulate database queries through the Username pa...
Jul 8, 2025CVE-2025-7185 is a critical SQL injection vulnerability in code-projects Library System 1.0 that allows remote attackers to execute arbitrary SQL comm...
Jul 8, 2025Why Monitor Code Projects Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 204+ known vulnerabilities affecting Code Projects products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Code Projects packages in under 60 seconds. No agents required - completely agentless scanning that works across Code Projects deployments.
Free vulnerability database: Access detailed information about every Code Projects CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Code Projects CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
