Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-4467 SourceCodester Online Student Clearance System edit-admin.php sql injection — Online Student Clearance SystemCWE-89 7.3 High2025-05-09
CVE-2025-4331 SourceCodester Online Student Clearance System login.php sql injection — Online Student Clearance SystemCWE-89 7.3 High2025-05-06
CVE-2025-4314 SourceCodester Advanced Web Store index.php sql injection — Advanced Web StoreCWE-89 7.3 High2025-05-06
CVE-2025-4313 SourceCodester Advanced Web Store admin_addnew_product.php sql injection — Advanced Web StoreCWE-89 7.3 High2025-05-06
CVE-2025-4312 SourceCodester Advanced Web Store productdetail.php sql injection — Advanced Web StoreCWE-89 7.3 High2025-05-06
CVE-2025-4283 SourceCodester/oretnom23 Stock Management System Login.php sql injection — Stock Management SystemCWE-89 7.3 High2025-05-05
CVE-2025-4282 SourceCodester/oretnom23 Stock Management System Users.php cross-site request forgery — Stock Management SystemCWE-352 4.3 Medium2025-05-05
CVE-2025-4267 SourceCodester/oretnom23 Stock Management System Purchase Order Details Page view_po sql injection — Stock Management SystemCWE-89 4.7 Medium2025-05-05
CVE-2025-4248 SourceCodester Simple To-Do List System complete_task.php sql injection — Simple To-Do List SystemCWE-89 6.3 Medium2025-05-04
CVE-2025-4247 SourceCodester Simple To-Do List System delete_task.php sql injection — Simple To-Do List SystemCWE-89 6.3 Medium2025-05-04
CVE-2025-4196 SourceCodester Patient Record Management System birthing.php sql injection — Patient Record Management SystemCWE-89 6.3 Medium2025-05-02
CVE-2025-4173 SourceCodester Online Eyewear Shop Master.php delete_cart sql injection — Online Eyewear ShopCWE-89 6.3 Medium2025-05-01
CVE-2025-3826 SourceCodester Web-based Pharmacy Product Management System add-supplier.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3825 SourceCodester Web-based Pharmacy Product Management System add-category.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3824 SourceCodester Web-based Pharmacy Product Management System add-product.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3823 SourceCodester Web-based Pharmacy Product Management System add-stock.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3822 SourceCodester Web-based Pharmacy Product Management System changepassword.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3821 SourceCodester Web-based Pharmacy Product Management System add-admin.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 2.4 Low2025-04-20
CVE-2025-3817 SourceCodester Online Eyewear Shop Master.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2025-04-19
CVE-2025-3783 SourceCodester Web-based Pharmacy Product Management System add-product.php unrestricted upload — Web-based Pharmacy Product Management SystemCWE-434 6.3 Medium2025-04-18
CVE-2025-3765 SourceCodester Web-based Pharmacy Product Management System edit-photo.php unrestricted upload — Web-based Pharmacy Product Management SystemCWE-434 6.3 Medium2025-04-17
CVE-2025-3764 SourceCodester Web-based Pharmacy Product Management System edit-product.php unrestricted upload — Web-based Pharmacy Product Management SystemCWE-434 6.3 Medium2025-04-17
CVE-2025-3763 SourceCodester Phone Management System Password main buffer overflow — Phone Management SystemCWE-120 5.3 Medium2025-04-17
CVE-2025-3729 SourceCodester Web-based Pharmacy Product Management System Database Backup backup.php os command injection — Web-based Pharmacy Product Management SystemCWE-78 7.3 High2025-04-16
CVE-2025-3728 SourceCodester Simple Hotel Booking System login buffer overflow — Simple Hotel Booking SystemCWE-120 5.3 Medium2025-04-16
CVE-2025-3697 SourceCodester Web-based Pharmacy Product Management System edit-product.php sql injection — Web-based Pharmacy Product Management SystemCWE-89 6.3 Medium2025-04-16
CVE-2025-3696 SourceCodester Web-based Pharmacy Product Management System search_stock. php sql injection — Web-based Pharmacy Product Management SystemCWE-89 6.3 Medium2025-04-16
CVE-2025-3694 SourceCodester Web-based Pharmacy Product Management System Login sql injection — Web-based Pharmacy Product Management SystemCWE-89 7.3 High2025-04-16
CVE-2025-3692 SourceCodester Online Eyewear Shop Master.php cross site scripting — Online Eyewear ShopCWE-79 2.4 Low2025-04-16
CVE-2025-3589 SourceCodester Music Class Enrollment System manage_class.php sql injection — Music Class Enrollment SystemCWE-89 6.3 Medium2025-04-14

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.