Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-3143 SourceCodester Online Discussion Forum Site manage_post.php cross site scripting — Online Discussion Forum SiteCWE-79 3.5 Low2023-06-07
CVE-2023-3120 SourceCodester Service Provider Management System view_service.php sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-06-06
CVE-2023-3119 SourceCodester Service Provider Management System view.php sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-06-06
CVE-2023-3059 SourceCodester Online Exam Form Submission update_s6.php sql injection — Online Exam Form SubmissionCWE-89 6.3 Medium2023-06-02
CVE-2023-3018 SourceCodester Lost and Found Information System access control — Lost and Found Information SystemCWE-284 6.3 Medium2023-05-31
CVE-2023-3017 SourceCodester Lost and Found Information System Manage User Page cross site scripting — Lost and Found Information SystemCWE-80 2.4 Low2023-05-31
CVE-2023-3005 SourceCodester Local Service Search Engine Management System POST Parameter cross site scripting — Local Service Search Engine Management SystemCWE-79 3.5 Low2023-05-31
CVE-2023-3004 SourceCodester Simple Chat System POST Parameter sql injection — Simple Chat SystemCWE-89 6.3 Medium2023-05-31
CVE-2023-3003 SourceCodester Train Station Ticketing System GET Parameter manage_prices.php sql injection — Train Station Ticketing SystemCWE-89 6.3 Medium2023-05-31
CVE-2023-2973 SourceCodester Students Online Internship Timesheet Syste cross site scripting — Students Online Internship Timesheet SysteCWE-79 2.4 Low2023-05-30
CVE-2023-2962 SourceCodester Faculty Evaluation System sql injection — Faculty Evaluation SystemCWE-89 4.7 Medium2023-05-29
CVE-2023-2955 SourceCodester Students Online Internship Timesheet System GET Parameter rendered_report.php sql injection — Students Online Internship Timesheet SystemCWE-89 6.3 Medium2023-05-29
CVE-2023-2922 SourceCodester Comment System GET Parameter index.php cross site scripting — Comment SystemCWE-79 3.5 Low2023-05-27
CVE-2023-2865 SourceCodester Theme Park Ticketing System GET Parameter print_ticket.php sql injection — Theme Park Ticketing SystemCWE-89 6.3 Medium2023-05-24
CVE-2023-2864 SourceCodester Online Jewelry Store POST Parameter customer.php cross site scripting — Online Jewelry StoreCWE-79 3.5 Low2023-05-24
CVE-2023-2826 SourceCodester Class Scheduling System POST Parameter search_teacher_result.php cross site scripting — Class Scheduling SystemCWE-79 3.5 Low2023-05-21
CVE-2023-2824 SourceCodester Dental Clinic Appointment Reservation System POST Parameter service.php cross site scripting — Dental Clinic Appointment Reservation SystemCWE-79 3.5 Low2023-05-20
CVE-2023-2823 SourceCodester Class Scheduling System GET Parameter edit_subject.php sql injection — Class Scheduling SystemCWE-89 6.3 Medium2023-05-20
CVE-2023-2815 SourceCodester Online Jewelry Store POST Parameter supplier.php sql injection — Online Jewelry StoreCWE-89 6.3 Medium2023-05-19
CVE-2023-2814 SourceCodester Class Scheduling System POST Parameter save_teacher.php cross site scripting — Class Scheduling SystemCWE-79 3.5 Low2023-05-19
CVE-2023-2772 SourceCodester Budget and Expense Tracker System GET Parameter manage_budget.php sql injection — Budget and Expense Tracker SystemCWE-89 6.3 Medium2023-05-17
CVE-2023-2771 SourceCodester Online Exam System data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-17
CVE-2023-2770 SourceCodester Online Exam System data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-17
CVE-2023-2769 SourceCodester Service Provider Management System sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-05-17
CVE-2023-2740 SourceCodester Guest Management System GET Parameter dateTest.php cross site scripting — Guest Management SystemCWE-79 3.5 Low2023-05-16
CVE-2023-2699 SourceCodester Lost and Found Information System GET Parameter sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2698 SourceCodester Lost and Found Information System GET Parameter sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2697 SourceCodester Online Exam System POST Parameter data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2696 SourceCodester Online Exam System POST Parameter data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2695 SourceCodester Online Exam System POST Parameter data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-14

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.