Code Projects Content Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Code Projects Content Management System.
By the Year
In 2025 there have been 4 vulnerabilities in Code Projects Content Management System with an average score of 8.7 out of ten. Last year, in 2024 Content Management System had 1 security vulnerability published. That is, 3 more vulnerabilities have already been reported in 2025 as compared to last year. Last year, the average CVE base score was greater by 1.15
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 4 | 8.65 |
| 2024 | 1 | 9.80 |
It may take a day or so for new Content Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Code Projects Content Management System Security Vulnerabilities
News-Buzz 1.0 PHP-SQLi via delete arg in /admin/users.php
CVE-2025-5633
8.8 - High
- June 05, 2025
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
News-Buzz 1.0 /admin/users.php SQLi via change_to_admin (Remote)
CVE-2025-5632
8.8 - High
- June 05, 2025
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument change_to_admin leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical News-Buzz 1.0 SQLi via publicposts.php (post arg)
CVE-2025-5631
9.8 - Critical
- June 05, 2025
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been classified as critical. Affected is an unknown function of the file /publicposts.php. The manipulation of the argument post leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Unrestricted File Upload in code-projects CMS 1.0 Publish News Page
CVE-2025-0346
7.2 - High
- January 09, 2025
A vulnerability was found in code-projects Content Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/publishnews.php of the component Publish News Page. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Unrestricted File Upload
Critical SQL Injection Vulnerability in AnirbanDutta9 CMS and News-Buzz v1.0 via 'user_name' Paramet
CVE-2024-10758
9.8 - Critical
- November 04, 2024
A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument user_name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is distributed under two entirely different names.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Code Projects Content Management System or by Code Projects? Click the Watch button to subscribe.
