Browse all 4 CVE security advisories affecting SourceCodeHero. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sourcecodehero develops code analysis and security testing tools for developers, focusing on identifying vulnerabilities during the development lifecycle. Historically, their tools have commonly detected remote code execution, cross-site scripting, and privilege escalation vulnerabilities across various programming languages. The platform integrates with popular development environments to provide real-time feedback on security flaws. While no major public security incidents have been reported, Sourcecodehero's own tools have helped remediate hundreds of vulnerabilities in client codebases before deployment. The company maintains a moderate CVE count, with their findings primarily centered on input validation flaws and insecure default configurations in third-party libraries.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10338 | SourceCodeHero Clothes Recommendation System home.php sql injection — Clothes Recommendation SystemCWE-89 | 4.7 | Medium | 2024-10-24 |
| CVE-2024-10337 | SourceCodeHero Clothes Recommendation System home.php sql injection — Clothes Recommendation SystemCWE-89 | 4.7 | Medium | 2024-10-24 |
| CVE-2024-10336 | SourceCodeHero Clothes Recommendation System Admin Login Page index.php sql injection — Clothes Recommendation SystemCWE-89 | 7.3 | High | 2024-10-24 |
| CVE-2022-3118 | Sourcecodehero ERP System Project processlogin.php sql injection — ERP System ProjectCWE-89 | 7.3 | High | 2022-09-04 |
This page lists every published CVE security advisory associated with SourceCodeHero. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.