Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-2393 SourceCodester CRUD without Page Reload add_user.php sql injection — CRUD without Page ReloadCWE-89 6.3 Medium2024-03-12
CVE-2024-2332 SourceCodester Online Mobile Management Store HTTP GET Request manage_category.php sql injection — Online Mobile Management StoreCWE-89 6.3 Medium2024-03-09
CVE-2024-2331 SourceCodester Tourist Reservation System System.cpp ad_writedata buffer overflow — Tourist Reservation SystemCWE-120 6.3 Medium2024-03-09
CVE-2024-2168 SourceCodester Online Tours & Travels Management System HTTP POST Request expense_category.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2024-03-04
CVE-2024-2156 SourceCodester Best POS Management System admin_class.php sql injection — Best POS Management SystemCWE-89 6.3 Medium2024-03-04
CVE-2024-2155 SourceCodester Best POS Management System index.php file inclusion — Best POS Management SystemCWE-73 4.3 Medium2024-03-04
CVE-2024-2154 SourceCodester Online Mobile Management Store view_product.php sql injection — Online Mobile Management StoreCWE-89 6.3 Medium2024-03-04
CVE-2024-2153 SourceCodester Online Mobile Management Store view_order.php sql injection — Online Mobile Management StoreCWE-89 6.3 Medium2024-03-04
CVE-2024-2152 SourceCodester Online Mobile Management Store manage_product.php sql injection — Online Mobile Management StoreCWE-89 4.7 Medium2024-03-04
CVE-2024-2151 SourceCodester Online Mobile Management Store Product Price logic error — Online Mobile Management StoreCWE-840 4.3 Medium2024-03-03
CVE-2024-2150 SourceCodester Insurance Management System file inclusion — Insurance Management SystemCWE-73 5.3 Medium2024-03-03
CVE-2024-2148 SourceCodester Online Mobile Management Store Users.php unrestricted upload — Online Mobile Management StoreCWE-434 6.3 Medium2024-03-03
CVE-2024-2147 SourceCodester Online Mobile Management Store login.php sql injection — Online Mobile Management StoreCWE-89 7.3 High2024-03-03
CVE-2024-2146 SourceCodester Online Mobile Management Store ?p=products cross site scripting — Online Mobile Management StoreCWE-79 3.5 Low2024-03-03
CVE-2024-2145 SourceCodester Online Mobile Management Store update-tracker.php cross site scripting — Online Mobile Management StoreCWE-79 3.5 Low2024-03-03
CVE-2024-2077 SourceCodester Simple Online Bidding System index.php sql injection — Simple Online Bidding SystemCWE-89 6.3 Medium2024-03-01
CVE-2024-2075 SourceCodester Daily Habit Tracker update-tracker.php cross site scripting — Daily Habit TrackerCWE-79 3.5 Low2024-03-01
CVE-2024-2073 SourceCodester Block Inserter for Dynamic Content view_post.php sql injection — Block Inserter for Dynamic ContentCWE-89 6.3 Medium2024-03-01
CVE-2024-2072 SourceCodester Flashcard Quiz App update-flashcard.php cross site scripting — Flashcard Quiz AppCWE-79 3.5 Low2024-03-01
CVE-2024-2071 SourceCodester FAQ Management System Update FAQ cross site scripting — FAQ Management SystemCWE-79 3.5 Low2024-03-01
CVE-2024-2070 SourceCodester FAQ Management System add-faq.php cross site scripting — FAQ Management SystemCWE-79 3.5 Low2024-03-01
CVE-2024-2069 SourceCodester FAQ Management System delete-faq.php sql injection — FAQ Management SystemCWE-89 6.3 Medium2024-03-01
CVE-2024-2068 SourceCodester Computer Inventory System update-computer.php cross site scripting — Computer Inventory SystemCWE-79 3.5 Low2024-03-01
CVE-2024-2067 SourceCodester Computer Inventory System delete-computer.php sql injection — Computer Inventory SystemCWE-89 6.3 Medium2024-03-01
CVE-2024-2066 SourceCodester Computer Inventory System add-computer.php cross site scripting — Computer Inventory SystemCWE-79 2.4 Low2024-03-01
CVE-2024-2065 SourceCodester Barangay Population Monitoring System update-resident.php cross site scripting — Barangay Population Monitoring SystemCWE-79 3.5 Low2024-03-01
CVE-2024-2063 SourceCodester Petrol Pump Management Software profile_crud.php cross site scripting — Petrol Pump Management SoftwareCWE-79 2.4 Low2024-03-01
CVE-2024-2062 SourceCodester Petrol Pump Management Software edit_categories.php sql injection — Petrol Pump Management SoftwareCWE-89 4.7 Medium2024-03-01
CVE-2024-2061 SourceCodester Petrol Pump Management Software edit_supplier.php sql injection — Petrol Pump Management SoftwareCWE-89 4.7 Medium2024-03-01
CVE-2024-2060 SourceCodester Petrol Pump Management Software login_crud.php sql injection — Petrol Pump Management SoftwareCWE-89 4.7 Medium2024-03-01

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.