Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-3383 SourceCodester Web-based Pharmacy Product Management System search_sales.php sql injection — Web-based Pharmacy Product Management SystemCWE-89 7.3 High2025-04-07
CVE-2025-3315 SourceCodester Apartment Visitor Management System view-report.php sql injection — Apartment Visitor Management SystemCWE-89 7.3 High2025-04-06
CVE-2025-3314 SourceCodester Apartment Visitor Management System forgotpw.php sql injection — Apartment Visitor Management SystemCWE-89 7.3 High2025-04-06
CVE-2025-3298 SourceCodester Online Eyewear Shop Registration Master.php access control — Online Eyewear ShopCWE-284 4.3 Medium2025-04-05
CVE-2025-3297 SourceCodester Online Eyewear Shop Master.php cross site scripting — Online Eyewear ShopCWE-79 3.5 Low2025-04-05
CVE-2025-3296 SourceCodester Online Eyewear Shop Users.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2025-04-05
CVE-2025-3244 SourceCodester Web-based Pharmacy Product Management System Create User Page add-admin.php unrestricted upload — Web-based Pharmacy Product Management SystemCWE-434 6.3 Medium2025-04-04
CVE-2025-3151 SourceCodester Gym Management System signup.php sql injection — Gym Management SystemCWE-89 7.3 High2025-04-03
CVE-2025-3143 SourceCodester Apartment Visitor Management System visitor-entry.php sql injection — Apartment Visitor Management SystemCWE-89 6.3 Medium2025-04-03
CVE-2025-3142 SourceCodester Apartment Visitor Management System add-apartment.php sql injection — Apartment Visitor Management SystemCWE-89 6.3 Medium2025-04-03
CVE-2025-3141 SourceCodester Online Medicine Ordering System manage_category.php sql injection — Online Medicine Ordering SystemCWE-89 6.3 Medium2025-04-03
CVE-2025-3140 SourceCodester Online Medicine Ordering System view_category.php sql injection — Online Medicine Ordering SystemCWE-89 6.3 Medium2025-04-03
CVE-2025-3120 SourceCodester Apartment Visitors Management System add-apartment.php sql injection — Apartment Visitors Management SystemCWE-89 6.3 Medium2025-04-02
CVE-2025-3119 SourceCodester Online Tutor Portal manage_course.php sql injection — Online Tutor PortalCWE-89 6.3 Medium2025-04-02
CVE-2025-3118 SourceCodester Online Tutor Portal view_course.php sql injection — Online Tutor PortalCWE-89 6.3 Medium2025-04-02
CVE-2025-3096 Clinics Patient Management System SQL Injection — Clinic's Patient Management SystemCWE-89 9.8AICriticalAI2025-04-01
CVE-2025-3018 SourceCodester Online Eyewear Shop Users.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2025-03-31
CVE-2025-2852 SourceCodester Food Ordering Management System view_menu.php sql injection — Food Ordering Management SystemCWE-89 4.7 Medium2025-03-27
CVE-2025-2846 SourceCodester Online Eyewear Shop Registration Users.php registration sql injection — Online Eyewear ShopCWE-89 7.3 High2025-03-27
CVE-2025-2655 SourceCodester AC Repair and Services System Users.php delete_users sql injection — AC Repair and Services SystemCWE-89 7.3 High2025-03-23
CVE-2025-2654 SourceCodester AC Repair and Services System manage_service.php sql injection — AC Repair and Services SystemCWE-89 7.3 High2025-03-23
CVE-2025-2652 SourceCodester Employee and Visitor Gate Pass Logging System exposure of information through directory listing — Employee and Visitor Gate Pass Logging SystemCWE-548 5.3 Medium2025-03-23
CVE-2025-2651 SourceCodester Online Eyewear Shop admin exposure of information through directory listing — Online Eyewear ShopCWE-548 5.3 Medium2025-03-23
CVE-2025-2626 SourceCodester Kortex Lite Advocate Office Management System edit_case.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2025-03-22
CVE-2025-2606 SourceCodester Best Church Management Software soulwinning_crud.php unrestricted upload — Best Church Management SoftwareCWE-434 6.3 Medium2025-03-21
CVE-2025-2604 SourceCodester Kortex Lite Advocate Office Management System edit_act.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2025-03-21
CVE-2025-2603 SourceCodester Kortex Lite Advocate Office Management System deactivate.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2025-03-21
CVE-2025-2602 SourceCodester Kortex Lite Advocate Office Management System deactivate_reg.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2025-03-21
CVE-2025-2601 SourceCodester Kortex Lite Advocate Office Management System activate_reg.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2025-03-21
CVE-2025-2387 SourceCodester Online Food Ordering System ajax.php sql injection — Online Food Ordering SystemCWE-89 7.3 High2025-03-17

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.