Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-3439 SourceCodester Prison Management System login.php sql injection — Prison Management SystemCWE-89 7.3 High2024-04-08
CVE-2024-3438 SourceCodester Prison Management System login.php sql injection — Prison Management SystemCWE-89 7.3 High2024-04-08
CVE-2024-3437 SourceCodester Prison Management System Avatar add-admin.php unrestricted upload — Prison Management SystemCWE-434 7.3 High2024-04-08
CVE-2024-3436 SourceCodester Prison Management System Avatar edit-photo.php unrestricted upload — Prison Management SystemCWE-434 6.3 Medium2024-04-07
CVE-2024-3428 SourceCodester Online Courseware edit.php cross site scripting — Online CoursewareCWE-79 3.5 Low2024-04-07
CVE-2024-3427 SourceCodester Online Courseware addq.php cross site scripting — Online CoursewareCWE-79 3.5 Low2024-04-07
CVE-2024-3426 SourceCodester Online Courseware editt.php cross site scripting — Online CoursewareCWE-79 3.5 Low2024-04-07
CVE-2024-3425 SourceCodester Online Courseware activateall.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3424 SourceCodester Online Courseware listscore.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3423 SourceCodester Online Courseware activateteach.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3422 SourceCodester Online Courseware activatestud.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3421 SourceCodester Online Courseware deactivatestud.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3420 SourceCodester Online Courseware saveedit.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3419 SourceCodester Online Courseware edit.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3418 SourceCodester Online Courseware deactivateteach.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3417 SourceCodester Online Courseware saveeditt.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3416 SourceCodester Online Courseware editt.php sql injection — Online CoursewareCWE-89 6.3 Medium2024-04-07
CVE-2024-3415 SourceCodester Human Resource Information System addbranches_process.php cross site scripting — Human Resource Information SystemCWE-79 3.5 Low2024-04-06
CVE-2024-3414 SourceCodester Human Resource Information System addcorporate_process.php cross site scripting — Human Resource Information SystemCWE-79 3.5 Low2024-04-06
CVE-2024-3413 SourceCodester Human Resource Information System login_process.php sql injection — Human Resource Information SystemCWE-89 7.3 High2024-04-06
CVE-2024-3377 SourceCodester Computer Laboratory Management System cross site scripting — Computer Laboratory Management SystemCWE-79 4.3 Medium2024-04-06
CVE-2024-3376 SourceCodester Computer Laboratory Management System config.php redirect — Computer Laboratory Management SystemCWE-698 7.3 High2024-04-06
CVE-2024-3365 SourceCodester Online Library System controller.php cross site scripting — Online Library SystemCWE-79 3.5 Low2024-04-06
CVE-2024-3364 SourceCodester Online Library System index.php cross site scripting — Online Library SystemCWE-79 3.5 Low2024-04-06
CVE-2024-3363 SourceCodester Online Library System index.php sql injection — Online Library SystemCWE-89 7.3 High2024-04-06
CVE-2024-3362 SourceCodester Online Library System controller.php sql injection — Online Library SystemCWE-89 7.3 High2024-04-06
CVE-2024-3361 SourceCodester Online Library System deweydecimal.php sql injection — Online Library SystemCWE-89 7.3 High2024-04-06
CVE-2024-3360 SourceCodester Online Library System index.php sql injection — Online Library SystemCWE-89 7.3 High2024-04-06
CVE-2024-3359 SourceCodester Online Library System login.php sql injection — Online Library SystemCWE-89 7.3 High2024-04-06
CVE-2024-3358 SourceCodester Aplaya Beach Resort Online Reservation System index.php cross site scripting — Aplaya Beach Resort Online Reservation SystemCWE-79 3.5 Low2024-04-06

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.