Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2026-8136 SourceCodester Pharmacy Sales and Inventory System index.php users cross site scripting — Pharmacy Sales and Inventory SystemCWE-79 2.4 Low2026-05-08
CVE-2026-8131 SourceCodester SUP Online Shopping replymsg.php sql injection — SUP Online ShoppingCWE-89 7.3 High2026-05-08
CVE-2026-8130 SourceCodester SUP Online Shopping message.php sql injection — SUP Online ShoppingCWE-89 7.3 High2026-05-08
CVE-2026-8129 SourceCodester SUP Online Shopping wishlist.php sql injection — SUP Online ShoppingCWE-89 7.3 High2026-05-08
CVE-2026-8128 SourceCodester SUP Online Shopping viewmsg.php sql injection — SUP Online ShoppingCWE-89 7.3 High2026-05-08
CVE-2026-8126 SourceCodester Comment System post_comment.php sql injection — Comment SystemCWE-89 7.3 High2026-05-08
CVE-2026-8117 SourceCodester Pizzafy Ecommerce System index.php cross site scripting — Pizzafy Ecommerce SystemCWE-79 4.3 Medium2026-05-07
CVE-2026-8083 SourceCodester Pharmacy Sales and Inventory System ajax.php save_user sql injection — Pharmacy Sales and Inventory SystemCWE-89 7.3 High2026-05-07
CVE-2026-7746 SourceCodester Web-based Pharmacy Product Management System edit-admin.php sql injection — Web-based Pharmacy Product Management SystemCWE-89 6.3 Medium2026-05-04
CVE-2026-7550 SourceCodester Pharmacy Sales and Inventory System ajax.php save_customer sql injection — Pharmacy Sales and Inventory SystemCWE-89 7.3 High2026-05-01
CVE-2026-7549 SourceCodester Pharmacy Sales and Inventory System ajax.php delete_customer sql injection — Pharmacy Sales and Inventory SystemCWE-89 7.3 High2026-05-01
CVE-2026-7545 SourceCodester Advanced School Management System checkEmail Endpoint commonController.php sql injection — Advanced School Management SystemCWE-89 7.3 High2026-05-01
CVE-2026-7506 SourceCodester Hotel Management System check sql injection — Hotel Management SystemCWE-89 7.3 High2026-04-30
CVE-2026-7447 SourceCodester Pet Grooming Management Software update_customer.php sql injection — Pet Grooming Management SoftwareCWE-89 6.3 Medium2026-04-30
CVE-2026-7410 SourceCodester Pizzafy Ecommerce System ajax.php add_to_cart sql injection — Pizzafy Ecommerce SystemCWE-89 6.3 Medium2026-04-29
CVE-2026-7409 SourceCodester Pizzafy Ecommerce System ajax.php save_user sql injection — Pizzafy Ecommerce SystemCWE-89 4.7 Medium2026-04-29
CVE-2026-7408 SourceCodester Pizzafy Ecommerce System ajax.php save_menu sql injection — Pizzafy Ecommerce SystemCWE-89 4.7 Medium2026-04-29
CVE-2026-7407 SourceCodester Pizzafy Ecommerce System Setting ajax.php save_settings sql injection — Pizzafy Ecommerce SystemCWE-89 4.7 Medium2026-04-29
CVE-2026-7401 SourceCodester CET Automated Grading System with AI Predictive Analytics Registration index.php register cross site scripting — CET Automated Grading System with AI Predictive AnalyticsCWE-79 4.3 Medium2026-04-29
CVE-2026-7394 SourceCodester Pizzafy Ecommerce System GET Parameter view_order.php sql injection — Pizzafy Ecommerce SystemCWE-89 4.7 Medium2026-04-29
CVE-2026-7393 SourceCodester Pizzafy Ecommerce System File Extension admin_class_novo.php save_menu unrestricted upload — Pizzafy Ecommerce SystemCWE-434 4.7 Medium2026-04-29
CVE-2026-7392 SourceCodester Pharmacy Sales and Inventory System ajax.php delete_supplier sql injection — Pharmacy Sales and Inventory SystemCWE-89 6.3 Medium2026-04-29
CVE-2026-7391 SourceCodester Pharmacy Sales and Inventory System ajax.php save_supplier sql injection — Pharmacy Sales and Inventory SystemCWE-89 6.3 Medium2026-04-29
CVE-2026-7390 SourceCodester Pharmacy Sales and Inventory System index.php customer cross site scripting — Pharmacy Sales and Inventory SystemCWE-79 3.5 Low2026-04-29
CVE-2026-7297 SourceCodester Pizzafy Ecommerce System ajax.php save_user cross site scripting — Pizzafy Ecommerce SystemCWE-79 2.4 Low2026-04-28
CVE-2026-7296 SourceCodester Pizzafy Ecommerce System ajax.php save_order cross site scripting — Pizzafy Ecommerce SystemCWE-79 2.4 Low2026-04-28
CVE-2026-7295 SourceCodester Pizzafy Ecommerce System ajax.php save_menu cross site scripting — Pizzafy Ecommerce SystemCWE-79 2.4 Low2026-04-28
CVE-2026-7294 SourceCodester Pizzafy Ecommerce System index.php save_settings cross site scripting — Pizzafy Ecommerce SystemCWE-79 2.4 Low2026-04-28
CVE-2026-7293 SourceCodester Pizzafy Ecommerce System ajax.php delete_category sql injection — Pizzafy Ecommerce SystemCWE-89 4.7 Medium2026-04-28
CVE-2026-7283 SourceCodester Pharmacy Sales and Inventory System ajax.php save_expired sql injection — Pharmacy Sales and Inventory SystemCWE-89 4.7 Medium2026-04-28

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.