Product
code projects content management system
32 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-7714
CVE-2025-7713
CVE-2026-0567
CVE-2026-0566
CVE-2026-0565
CVE-2026-0546
CVE-2025-15197
CVE-2025-5633
CVE-2025-5632
CVE-2025-5631
CVE-2025-29094
CVE-2025-29093
CVE-2025-4311
CVE-2025-4310
CVE-2025-4301
CVE-2025-4300
CVE-2025-0346
CVE-2024-10758
CVE-2023-48987
CVE-2023-48986
CVE-2023-48985
CVE-2023-31816
CVE-2021-25197
CVE-2008-3154
CVE-2007-4365
CVE-2007-1966
CVE-2007-1965
CVE-2007-1950
CVE-2007-1949
CVE-2006-7080
CVE-2006-7079
CVE-2006-5030
<= 2025-07-21
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Global Interactive Design Me
<= 2025-07-21
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Interactive De
all versions
A vulnerability was detected in code-projects Content Management System 1.0. The affected element is an unknown function of the fi
all versions
A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the
all versions
A weakness has been identified in code-projects Content Management System 1.0. This issue affects some unknown processing of the f
all versions
A vulnerability was determined in code-projects Content Management System 1.0. This impacts an unknown function of the file search
all versions
A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This vulnerability
all versions
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critica
all versions
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as crit
all versions
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been classified as cr
all versions
Cross Site Scripting vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbitrary code
all versions
File Upload vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbitrary code via the
all versions
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown
all versions
A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. This affects an unknown part
all versions
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. Affected by this vulnerability is
all versions
A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. Affected is an unknown functi
all versions
A vulnerability was found in code-projects Content Management System 1.0. It has been classified as critical. This affects an unkn
all versions
A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buz
< 7.75
Blind SQL Injection vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) before v.7.75 allows a remote attac
< 7.75
Cross Site Scripting (XSS) vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) before v.7.75 allows a remot
< 7.75
Cross Site Scripting (XSS) vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) before v.7.75 allows a remot
all versions
IT Sourcecode Content Management System Project In PHP and MySQL With Source Code 1.0.0 is vulnerable to Cross Site Scripting (XSS
all versions
Cross-site scripting (XSS) vulnerability in SourceCodester Content Management System v 1.0 allows remote attackers to inject arbit
all versions
SQL injection vulnerability in index.php in WebBlizzard CMS allows remote attackers to execute arbitrary SQL commands via the page
<= 2.0.5
Cross-site scripting (XSS) vulnerability in eXV2 CMS 2.0.5 and earlier allows remote attackers to inject arbitrary web script or H
all versions
Session fixation vulnerability in eXV2 CMS 2.0.4.3 and earlier allows remote attackers to hijack web sessions by setting the PHPSE
<= 2.0.4.3
Multiple cross-site scripting (XSS) vulnerabilities in eXV2 CMS 2.0.4.3 and earlier allow remote attackers to inject arbitrary web
all versions
Cross-site scripting (XSS) vulnerability in index_cms.php in WebBlizzard CMS allows remote attackers to inject arbitrary web scrip
all versions
Session fixation vulnerability in WebBlizzard CMS allows remote attackers to hijack web sessions by setting a PHPSESSID cookie.
<= 2.0.4.3
Directory traversal vulnerability in the avatar upload feature in exV2 2.0.4.3 and earlier allows remote attackers to delete arbit
<= 2.0.4.3
Variable extraction vulnerability in include/common.php in exV2 2.0.4.3 and earlier allows remote attackers to overwrite arbitrary
<= 2.0.4.3
SQL injection vulnerability in modules/messages/index.php in exV2 2.0.4.3 and earlier allows remote authenticated users to execute