Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-3140 SourceCodester Computer Laboratory Management System cross site scripting — Computer Laboratory Management SystemCWE-79 3.5 Low2024-04-01
CVE-2024-3139 SourceCodester Computer Laboratory Management System save_users improper authorization — Computer Laboratory Management SystemCWE-285 5.4 Medium2024-04-01
CVE-2024-3131 SourceCodester Computer Laboratory Management System sql injection — Computer Laboratory Management SystemCWE-89 6.3 Medium2024-04-01
CVE-2024-3129 SourceCodester Image Accordion Gallery App add-image.php unrestricted upload — Image Accordion Gallery AppCWE-434 6.3 Medium2024-04-01
CVE-2024-3042 SourceCodester Simple Subscription Website manage_user.php sql injection — Simple Subscription WebsiteCWE-89 6.3 Medium2024-03-28
CVE-2024-3015 SourceCodester Simple Subscription Website manage_plan.php sql injection — Simple Subscription WebsiteCWE-89 6.3 Medium2024-03-28
CVE-2024-3014 SourceCodester Simple Subscription Website Actions.php sql injection — Simple Subscription WebsiteCWE-89 6.3 Medium2024-03-28
CVE-2024-2935 SourceCodester Todo List in Kanban Board Add ToDo cross site scripting — Todo List in Kanban BoardCWE-79 3.5 Low2024-03-27
CVE-2024-2934 SourceCodester Todo List in Kanban Board delete-todo.php sql injection — Todo List in Kanban BoardCWE-89 6.3 Medium2024-03-27
CVE-2024-2932 SourceCodester Online Chatting System update_room.php sql injection — Online Chatting SystemCWE-89 6.3 Medium2024-03-27
CVE-2024-2930 SourceCodester Music Gallery Site unrestricted upload — Music Gallery SiteCWE-434 7.3 High2024-03-26
CVE-2024-2849 SourceCodester Simple File Manager unrestricted upload — Simple File ManagerCWE-434 6.3 Medium2024-03-23
CVE-2024-2754 SourceCodester Complete E-Commerce Site users_photo.php unrestricted upload — Complete E-Commerce SiteCWE-434 4.7 Medium2024-03-21
CVE-2024-2690 SourceCodester Online Discussion Forum Site uupdate.php unrestricted upload — Online Discussion Forum SiteCWE-434 6.3 Medium2024-03-20
CVE-2024-2604 SourceCodester File Manager App update-file.php unrestricted upload — File Manager AppCWE-434 6.3 Medium2024-03-18
CVE-2024-2577 SourceCodester Employee Task Management System update-employee.php authorization — Employee Task Management SystemCWE-639 7.3 High2024-03-18
CVE-2024-2576 SourceCodester Employee Task Management System update-admin.php authorization — Employee Task Management SystemCWE-639 7.3 High2024-03-18
CVE-2024-2575 SourceCodester Employee Task Management System task-details.php authorization — Employee Task Management SystemCWE-639 7.3 High2024-03-18
CVE-2024-2574 SourceCodester Employee Task Management System edit-task.php authorization — Employee Task Management SystemCWE-639 7.3 High2024-03-18
CVE-2024-2573 SourceCodester Employee Task Management System task-info.php redirect — Employee Task Management SystemCWE-698 7.3 High2024-03-18
CVE-2024-2572 SourceCodester Employee Task Management System task-details.php redirect — Employee Task Management SystemCWE-698 7.3 High2024-03-18
CVE-2024-2571 SourceCodester Employee Task Management System manage-admin.php redirect — Employee Task Management SystemCWE-698 7.3 High2024-03-18
CVE-2024-2570 SourceCodester Employee Task Management System edit-task.php redirect — Employee Task Management SystemCWE-698 7.3 High2024-03-18
CVE-2024-2569 SourceCodester Employee Task Management System admin-manage-user.php redirect — Employee Task Management SystemCWE-698 7.3 High2024-03-17
CVE-2024-2556 SourceCodester Employee Task Management System attendance-info.php sql injection — Employee Task Management SystemCWE-89 6.3 Medium2024-03-17
CVE-2024-2555 SourceCodester Employee Task Management System update-admin.php sql injection — Employee Task Management SystemCWE-89 6.3 Medium2024-03-17
CVE-2024-2554 SourceCodester Employee Task Management System update-employee.php sql injection — Employee Task Management SystemCWE-89 6.3 Medium2024-03-17
CVE-2024-2553 SourceCodester Product Review Rating System Rate Product cross site scripting — Product Review Rating SystemCWE-79 3.5 Low2024-03-17
CVE-2024-2418 SourceCodester Best POS Management System view_order.php sql injection — Best POS Management SystemCWE-89 6.3 Medium2024-03-13
CVE-2024-2394 SourceCodester Employee Management System add-admin.php unrestricted upload — Employee Management SystemCWE-434 4.7 Medium2024-03-12

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.