Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-2451 SourceCodester Online DJ Management System GET Parameter view_details.php sql injection — Online DJ Management SystemCWE-89 6.3 Medium2023-05-01
CVE-2023-2425 SourceCodester Simple Student Information System Add New Course cross site scripting — Simple Student Information SystemCWE-79 2.4 Low2023-04-29
CVE-2023-2413 SourceCodester AC Repair and Services System manage_booking.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-29
CVE-2023-2412 SourceCodester AC Repair and Services System manage_user.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2411 SourceCodester AC Repair and Services System view_inquiry.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2410 SourceCodester AC Repair and Services System view_booking.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2409 SourceCodester AC Repair and Services System view_service.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2408 SourceCodester AC Repair and Services System view.php sql injection — AC Repair and Services SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2397 SourceCodester Simple Mobile Comparison Website cross site scripting — Simple Mobile Comparison WebsiteCWE-79 2.4 Low2023-04-28
CVE-2023-2372 SourceCodester Online DJ Management System cross site scripting — Online DJ Management SystemCWE-79 2.4 Low2023-04-28
CVE-2023-2371 SourceCodester Online DJ Management System GET Parameter view_details.php sql injection — Online DJ Management SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2370 SourceCodester Online DJ Management System GET Parameter manage_event.php sql injection — Online DJ Management SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2369 SourceCodester Faculty Evaluation System manage_restriction.php sql injection — Faculty Evaluation SystemCWE-89 4.7 Medium2023-04-28
CVE-2023-2368 SourceCodester Faculty Evaluation System sql injection — Faculty Evaluation SystemCWE-89 4.7 Medium2023-04-28
CVE-2023-2367 SourceCodester Faculty Evaluation System manage_academic.php sql injection — Faculty Evaluation SystemCWE-89 4.7 Medium2023-04-28
CVE-2023-2366 SourceCodester Faculty Evaluation System sql injection — Faculty Evaluation SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2365 SourceCodester Faculty Evaluation System sql injection — Faculty Evaluation SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2364 SourceCodester Resort Reservation System registration.php cross site scripting — Resort Reservation SystemCWE-79 4.3 Medium2023-04-28
CVE-2023-2363 SourceCodester Resort Reservation System view_room.php sql injection — Resort Reservation SystemCWE-89 6.3 Medium2023-04-28
CVE-2023-2350 SourceCodester Service Provider Management System Users.php cross site scripting — Service Provider Management SystemCWE-79 3.5 Low2023-04-27
CVE-2023-2349 SourceCodester Service Provider Management System index.php cross site scripting — Service Provider Management SystemCWE-79 3.5 Low2023-04-27
CVE-2023-2348 SourceCodester Service Provider Management System manage_user.php sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-04-27
CVE-2023-2347 SourceCodester Service Provider Management System manage_service.php sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-04-27
CVE-2023-2346 SourceCodester Service Provider Management System view_inquiry.php sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-04-27
CVE-2023-2345 SourceCodester Service Provider Management System improper authorization — Service Provider Management SystemCWE-285 6.3 Medium2023-04-27
CVE-2023-2344 SourceCodester Service Provider Management System HTTP POST Request sql injection — Service Provider Management SystemCWE-89 6.3 Medium2023-04-27
CVE-2023-2293 SourceCodester Purchase Order Management System cross site scripting — Purchase Order Management SystemCWE-79 2.4 Low2023-04-25
CVE-2023-2246 SourceCodester Online Pizza Ordering System unrestricted upload — Online Pizza Ordering SystemCWE-434 6.3 Medium2023-04-23
CVE-2023-2244 SourceCodester Online Eyewear Shop GET Parameter update_status.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2023-04-22
CVE-2023-2243 SourceCodester Complaint Management System POST Parameter registration.php sql injection — Complaint Management SystemCWE-89 6.3 Medium2023-04-22

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.