Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-5299 SourceCodester Client Database Management System user_order_customer_update.php unrestricted upload — Client Database Management SystemCWE-434 7.3 High2025-05-28
CVE-2025-5297 SourceCodester Computer Store System main.c Add stack-based overflow — Computer Store SystemCWE-121 5.3 Medium2025-05-28
CVE-2025-5208 SourceCodester Online Hospital Management System check_availability.php sql injection — Online Hospital Management SystemCWE-89 7.3 High2025-05-26
CVE-2025-5207 SourceCodester Client Database Management System superadmin_update_profile.php sql injection — Client Database Management SystemCWE-89 4.7 Medium2025-05-26
CVE-2025-5002 SourceCodester Client Database Management System user_proposal_update_order.php sql injection — Client Database Management SystemCWE-89 7.3 High2025-05-20
CVE-2025-4937 SourceCodester Apartment Visitor Management System profile.php sql injection — Apartment Visitor Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4935 SourceCodester Stock Management System changePassword.php sql injection — Stock Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4924 SourceCodester Client Database Management System user_void_transaction.php sql injection — Client Database Management SystemCWE-89 7.3 High2025-05-19
CVE-2025-4923 SourceCodester Client Database Management System user_delivery_update.php unrestricted upload — Client Database Management SystemCWE-434 7.3 High2025-05-19
CVE-2025-4912 SourceCodester Student Result Management System Image File update_student.php path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-19
CVE-2025-4909 SourceCodester Client Database Management System exposure of information through directory listing — Client Database Management SystemCWE-548 7.3 High2025-05-19
CVE-2025-4898 SourceCodester Student Result Management System Logo File update_system.php unlink path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-18
CVE-2025-4895 SourceCodester Doctors Appointment System delete-session.php sql injection — Doctors Appointment SystemCWE-89 7.3 High2025-05-18
CVE-2025-4887 SourceCodester Online Student Clearance System cross-site request forgery — Online Student Clearance SystemCWE-352 4.3 Medium2025-05-18
CVE-2025-4818 SourceCodester Doctor's Appointment System GET Parameter delete-doctor.php sql injection — Doctor's Appointment SystemCWE-89 7.3 High2025-05-17
CVE-2025-4817 Sourcecodester Doctor's Appointment System GET Parameter delete-appointment.php sql injection — Doctor's Appointment SystemCWE-89 7.3 High2025-05-17
CVE-2025-4816 SourceCodester Doctor's Appointment System GET Parameter appointment.php sql injection — Doctor's Appointment SystemCWE-89 7.3 High2025-05-17
CVE-2025-4807 SourceCodester Online Student Clearance System exposure of information through directory listing — Online Student Clearance SystemCWE-548 5.3 Medium2025-05-16
CVE-2025-4806 SourceCodester/oretnom23 Stock Management System view_bo sql injection — Stock Management SystemCWE-89 6.3 Medium2025-05-16
CVE-2025-4787 SourceCodester/oretnom23 Stock Management System view_sale sql injection — Stock Management SystemCWE-89 6.3 Medium2025-05-16
CVE-2025-4786 SourceCodester/oretnom23 Stock Management System view_return sql injection — Stock Management SystemCWE-89 6.3 Medium2025-05-16
CVE-2025-4782 SourceCodester/oretnom23 Stock Management System view_receiving sql injection — Stock Management SystemCWE-89 6.3 Medium2025-05-16
CVE-2025-4728 SourceCodester Best Online News Portal search.php sql injection — Best Online News PortalCWE-89 7.3 High2025-05-15
CVE-2025-4720 SourceCodester Student Result Management System drop_student.php path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-15
CVE-2025-4547 SourceCodester Web-based Pharmacy Product Management System Add User Page cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-05-11
CVE-2025-4504 SourceCodester Online College Library System index.php sql injection — Online College Library SystemCWE-89 7.3 High2025-05-10
CVE-2025-4481 SourceCodester Apartment Visitor Management System search-result.php sql injection — Apartment Visitor Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4470 SourceCodester Online Student Clearance System add-student.php cross site scripting — Online Student Clearance SystemCWE-79 2.4 Low2025-05-09
CVE-2025-4469 SourceCodester Online Student Clearance System add-admin.php cross site scripting — Online Student Clearance SystemCWE-79 2.4 Low2025-05-09
CVE-2025-4468 SourceCodester Online Student Clearance System edit-photo.php unrestricted upload — Online Student Clearance SystemCWE-434 7.3 High2025-05-09

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.