Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-4872 SourceCodester Contact Manager App add.php sql injection — Contact Manager AppCWE-89 6.3 Medium2023-09-10
CVE-2023-4871 SourceCodester Contact Manager App delete.php sql injection — Contact Manager AppCWE-89 6.3 Medium2023-09-10
CVE-2023-4870 SourceCodester Contact Manager App Contact Information index.php cross site scripting — Contact Manager AppCWE-79 3.5 Low2023-09-10
CVE-2023-4869 SourceCodester Contact Manager App update.php cross-site request forgery — Contact Manager AppCWE-352 4.3 Medium2023-09-10
CVE-2023-4868 SourceCodester Contact Manager App add.php cross-site request forgery — Contact Manager AppCWE-352 4.3 Medium2023-09-10
CVE-2023-4866 SourceCodester Online Tours & Travels Management System booking.php exec sql injection — Online Tours & Travels Management SystemCWE-89 6.3 Medium2023-09-09
CVE-2023-4865 SourceCodester Take-Note App cross-site request forgery — Take-Note AppCWE-352 4.3 Medium2023-09-09
CVE-2023-4864 SourceCodester Take-Note App index.php cross site scripting — Take-Note AppCWE-79 3.5 Low2023-09-09
CVE-2023-4848 SourceCodester Simple Book Catalog App delete_book.php sql injection — Simple Book Catalog AppCWE-89 6.3 Medium2023-09-09
CVE-2023-4847 SourceCodester Simple Book Catalog App Update Book Form cross site scripting — Simple Book Catalog AppCWE-79 3.5 Low2023-09-09
CVE-2023-4846 SourceCodester Simple Membership System delete_member.php sql injection — Simple Membership SystemCWE-89 6.3 Medium2023-09-09
CVE-2023-4845 SourceCodester Simple Membership System account_edit_query.php sql injection — Simple Membership SystemCWE-89 6.3 Medium2023-09-09
CVE-2023-4844 SourceCodester Simple Membership System club_edit_query.php sql injection — Simple Membership SystemCWE-89 6.3 Medium2023-09-08
CVE-2023-4749 SourceCodester Inventory Management System index.php file inclusion — Inventory Management SystemCWE-73 6.3 Medium2023-09-04
CVE-2023-4558 SourceCodester Inventory Management System staff_data.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-27
CVE-2023-4557 SourceCodester Inventory Management System search_purchase_paymen_report.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-27
CVE-2023-4556 SourceCodester Online Graduate Tracer System sexit.php mysqli_query sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2023-08-27
CVE-2023-4555 SourceCodester Inventory Management System suppliar_data.php cross site scripting — Inventory Management SystemCWE-79 3.5 Low2023-08-27
CVE-2023-4449 SourceCodester Free and Open Source Inventory Management System sql injection — Free and Open Source Inventory Management SystemCWE-89 6.3 Medium2023-08-21
CVE-2023-4444 SourceCodester Free Hospital Management System for Small Practices edit-user.php sql injection — Free Hospital Management System for Small PracticesCWE-89 6.3 Medium2023-08-21
CVE-2023-4443 SourceCodester Free Hospital Management System for Small Practices edit-doc.php sql injection — Free Hospital Management System for Small PracticesCWE-89 6.3 Medium2023-08-21
CVE-2023-4442 SourceCodester Free Hospital Management System for Small Practices booking-complete.php sql injection — Free Hospital Management System for Small PracticesCWE-89 6.3 Medium2023-08-21
CVE-2023-4441 SourceCodester Free Hospital Management System for Small Practices appointment.php sql injection — Free Hospital Management System for Small PracticesCWE-89 6.3 Medium2023-08-20
CVE-2023-4440 SourceCodester Free Hospital Management System for Small Practices appointment.php sql injection — Free Hospital Management System for Small PracticesCWE-89 6.3 Medium2023-08-20
CVE-2023-4439 SourceCodester Card Holder Management System Minus Value unknown vulnerability — Card Holder Management SystemCWE-1284 4.3 Medium2023-08-20
CVE-2023-4438 SourceCodester Inventory Management System search_sales_report.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-20
CVE-2023-4437 SourceCodester Inventory Management System search_sell_paymen_report.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-20
CVE-2023-4436 SourceCodester Inventory Management System edit_update.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-20
CVE-2023-4219 SourceCodester Doctors Appointment System login.php sql injection — Doctors Appointment SystemCWE-89 7.3 High2023-08-08
CVE-2023-4201 SourceCodester Inventory Management System ex_catagory_data.php sql injection — Inventory Management SystemCWE-89 6.3 Medium2023-08-07

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.