Security Vulnerabilities
code-projects Document Management System 1.0 has a Cross Site Scripting (XSS) vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-09-16
code-projects Human Resource Integrated System 1.0 is vulnerable to Cross Site Scripting (XSS) in the Add Child Information section in the Childs Name field.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-09-16
code-projects Computer Laboratory System 1.0 has a file upload vulnerability. Staff can upload malicious files by uploading PHP backdoor files when modifying personal avatar information and use web shell connection tools to obtain server permissions.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-09-16
code-projects Food Ordering Review System 1.0 is vulnerable to Cross Site Scripting (XSS) in the registration function. An attacker enters malicious JavaScript code as a username, which triggers the XSS vulnerability when the admin views user information, resulting in the disclosure of the admin's cookie information.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-09-16
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function
CVSS Score
9.8
EPSS Score
0.0
Published
2025-09-16
This vulnerability affects Firefox < 143 and Thunderbird < 143.
CVSS Score
8.1
EPSS Score
0.0
Published
2025-09-16
This vulnerability affects Firefox < 143.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-09-16
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-09-16
This vulnerability affects Firefox < 143, Firefox ESR < 115.28, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-09-16
This vulnerability affects Firefox < 143 and Thunderbird < 143.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-09-16