Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-2694 SourceCodester Online Exam System POST Parameter data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2693 SourceCodester Online Exam System POST Parameter data sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2692 SourceCodester ICT Laboratory Management System GET Parameter room_info.php cross site scripting — ICT Laboratory Management SystemCWE-79 3.5 Low2023-05-14
CVE-2023-2691 SourceCodester Personnel Property Equipment System POST Parameter add_item.php cross site scripting — Personnel Property Equipment SystemCWE-79 3.5 Low2023-05-14
CVE-2023-2690 SourceCodester Personnel Property Equipment System GET Parameter returned_reuse_form.php sql injection — Personnel Property Equipment SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2689 SourceCodester Billing Management System GET Parameter editproduct.php sql injection — Billing Management SystemCWE-89 6.3 Medium2023-05-14
CVE-2023-2678 SourceCodester File Tracker Manager System POST Parameter save_user.php cross site scripting — File Tracker Manager SystemCWE-79 3.5 Low2023-05-12
CVE-2023-2677 SourceCodester Covid-19 Contact Tracing System manage.php sql injection — Covid-19 Contact Tracing SystemCWE-89 6.3 Medium2023-05-12
CVE-2023-2672 SourceCodester Lost and Found Information System GET Parameter view.php sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-12
CVE-2023-2671 SourceCodester Lost and Found Information System Contact Form cross site scripting — Lost and Found Information SystemCWE-79 3.5 Low2023-05-12
CVE-2023-2670 SourceCodester Lost and Found Information System access control — Lost and Found Information SystemCWE-284 6.3 Medium2023-05-12
CVE-2023-2669 SourceCodester Lost and Found Information System GET Parameter sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-12
CVE-2023-2668 SourceCodester Lost and Found Information System GET Parameter manager_category sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-12
CVE-2023-2667 SourceCodester Lost and Found Information System cross site scripting — Lost and Found Information SystemCWE-79 3.5 Low2023-05-12
CVE-2023-2661 SourceCodester Online Computer and Laptop Store Master.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-05-11
CVE-2023-2660 SourceCodester Online Computer and Laptop Store view_categories.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-05-11
CVE-2023-2659 SourceCodester Online Computer and Laptop Store view_product.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-05-11
CVE-2023-2658 SourceCodester Online Computer and Laptop Store products.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-05-11
CVE-2023-2657 SourceCodester Online Computer and Laptop Store products.php cross site scripting — Online Computer and Laptop StoreCWE-79 3.5 Low2023-05-11
CVE-2023-2656 SourceCodester AC Repair and Services System sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-05-11
CVE-2023-2653 SourceCodester Lost and Found Information System index.php sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-11
CVE-2023-2652 SourceCodester Lost and Found Information System sql injection — Lost and Found Information SystemCWE-89 6.3 Medium2023-05-11
CVE-2023-2643 SourceCodester File Tracker Manager System POST Parameter update_password.php sql injection — File Tracker Manager SystemCWE-89 6.3 Medium2023-05-11
CVE-2023-2642 SourceCodester Online Exam System GET Parameter updateCourse.php sql injection — Online Exam SystemCWE-89 6.3 Medium2023-05-11
CVE-2023-2641 SourceCodester Online Internship Management System POST Parameter login.php sql injection — Online Internship Management SystemCWE-89 7.3 High2023-05-11
CVE-2023-2619 SourceCodester Online Tours & Travels Management System disapprove_delete.php exec sql injection — Online Tours & Travels Management SystemCWE-89 6.3 Medium2023-05-10
CVE-2023-2596 SourceCodester Online Reviewer System GET Parameter user-update.php sql injection — Online Reviewer SystemCWE-89 6.3 Medium2023-05-09
CVE-2023-2595 SourceCodester Billing Management System POST Parameter ajax_service.php sql injection — Billing Management SystemCWE-89 6.3 Medium2023-05-09
CVE-2023-2594 SourceCodester Food Ordering Management System Registration sql injection — Food Ordering Management SystemCWE-89 7.3 High2023-05-09
CVE-2023-2565 SourceCodester Multi Language Hotel Management Software POST Parameter ajax.php cross site scripting — Multi Language Hotel Management SoftwareCWE-79 3.5 Low2023-05-07

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.