Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-6767 SourceCodester Wedding Guest e-Book add-guest.php cross site scripting — Wedding Guest e-BookCWE-79 4.3 Medium2023-12-13
CVE-2023-6765 SourceCodester Online Tours & Travels Management System email_setup.php prepare sql injection — Online Tours & Travels Management SystemCWE-89 5.5 Medium2023-12-13
CVE-2023-6658 SourceCodester Simple Student Attendance System sql injection — Simple Student Attendance SystemCWE-89 5.5 Medium2023-12-10
CVE-2023-6657 SourceCodester Simple Student Attendance System student_form.php sql injection — Simple Student Attendance SystemCWE-89 5.5 Medium2023-12-10
CVE-2023-6650 SourceCodester Simple Invoice Generator System login.php cross site scripting — Simple Invoice Generator SystemCWE-79 4.3 Medium2023-12-10
CVE-2023-6619 SourceCodester Simple Student Attendance System class_form.php sql injection — Simple Student Attendance SystemCWE-89 5.5 Medium2023-12-08
CVE-2023-6618 SourceCodester Simple Student Attendance System index.php file inclusion — Simple Student Attendance SystemCWE-73 5.5 Medium2023-12-08
CVE-2023-6617 SourceCodester Simple Student Attendance System attendance.php sql injection — Simple Student Attendance SystemCWE-89 5.5 Medium2023-12-08
CVE-2023-6616 SourceCodester Simple Student Attendance System index.php cross site scripting — Simple Student Attendance SystemCWE-79 3.5 Low2023-12-08
CVE-2023-6473 SourceCodester Online Quiz System take-quiz.php cross site scripting — Online Quiz SystemCWE-79 3.5 Low2023-12-02
CVE-2023-6464 SourceCodester User Registration and Login System add-user.php sql injection — User Registration and Login SystemCWE-89 6.3 Medium2023-12-02
CVE-2023-6463 SourceCodester User Registration and Login System add-user.php cross site scripting — User Registration and Login SystemCWE-79 3.5 Low2023-12-01
CVE-2023-6462 SourceCodester User Registration and Login System delete-user.php cross site scripting — User Registration and Login SystemCWE-79 3.5 Low2023-12-01
CVE-2023-6440 SourceCodester Book Borrower System add-book.php cross site scripting — Book Borrower SystemCWE-79 3.5 Low2023-11-30
CVE-2023-6313 SourceCodester URL Shortener Long URL cross site scripting — URL ShortenerCWE-79 3.5 Low2023-11-27
CVE-2023-6312 SourceCodester Loan Management System Users Page deleteUser.php delete_user sql injection — Loan Management SystemCWE-89 4.7 Medium2023-11-27
CVE-2023-6311 SourceCodester Loan Management System Loan Type Page delete_ltype.php delete_ltype sql injection — Loan Management SystemCWE-89 4.7 Medium2023-11-27
CVE-2023-6310 SourceCodester Loan Management System deleteBorrower.php delete_borrower sql injection — Loan Management SystemCWE-89 4.7 Medium2023-11-27
CVE-2023-6306 SourceCodester Free and Open Source Inventory Management System member_data.php sql injection — Free and Open Source Inventory Management SystemCWE-89 6.3 Medium2023-11-27
CVE-2023-6305 SourceCodester Free and Open Source Inventory Management System suppliar_data.php sql injection — Free and Open Source Inventory Management SystemCWE-89 6.3 Medium2023-11-27
CVE-2023-6301 SourceCodester Best Courier Management System GET Parameter parcel_list.php cross site scripting — Best Courier Management SystemCWE-79 3.5 Low2023-11-26
CVE-2023-6300 SourceCodester Best Courier Management System cross site scripting — Best Courier Management SystemCWE-79 3.5 Low2023-11-26
CVE-2023-5919 SourceCodester Company Website CMS Create Blog Page createblog unrestricted upload — Company Website CMSCWE-434 4.7 Medium2023-11-02
CVE-2023-5918 SourceCodester Visitor Management System manage_user.php sql injection — Visitor Management SystemCWE-89 6.3 Medium2023-11-02
CVE-2023-5836 SourceCodester Task Reminder System sql injection — Task Reminder SystemCWE-89 6.3 Medium2023-10-28
CVE-2023-5814 SourceCodester Task Reminder System sql injection — Task Reminder SystemCWE-89 6.3 Medium2023-10-27
CVE-2023-5813 SourceCodester Task Reminder System sql injection — Task Reminder SystemCWE-89 6.3 Medium2023-10-27
CVE-2023-5805 SourceCodester Simple Real Estate Portal System view_estate.php sql injection — Simple Real Estate Portal SystemCWE-89 6.3 Medium2023-10-26
CVE-2023-5792 SourceCodester Sticky Notes App delete-note.php sql injection — Sticky Notes AppCWE-89 6.3 Medium2023-10-26
CVE-2023-5791 SourceCodester Sticky Notes App add-note.php cross site scripting — Sticky Notes AppCWE-79 3.5 Low2023-10-26

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.