Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-1962 SourceCodester Best Online News Portal POST Parameter forgot-password.php sql injection — Best Online News PortalCWE-89 7.3 High2023-04-09
CVE-2023-1961 SourceCodester Online Computer and Laptop Store cross site scripting — Online Computer and Laptop StoreCWE-79 2.4 Low2023-04-08
CVE-2023-1960 SourceCodester Online Computer and Laptop Store sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1959 SourceCodester Online Computer and Laptop Store sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1958 SourceCodester Online Computer and Laptop Store sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1957 SourceCodester Online Computer and Laptop Store Subcategory sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1956 SourceCodester Online Computer and Laptop Store Image path traversal — Online Computer and Laptop StoreCWE-22 5.4 Medium2023-04-08
CVE-2023-1955 SourceCodester Online Computer and Laptop Store User Registration login.php sql injection — Online Computer and Laptop StoreCWE-89 7.3 High2023-04-08
CVE-2023-1954 SourceCodester Online Computer and Laptop Store manage.php save_inventory sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1953 SourceCodester Online Computer and Laptop Store index.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1952 SourceCodester Online Computer and Laptop Store Product Search ?p=products sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1951 SourceCodester Online Computer and Laptop Store brand.php delete_brand sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2023-04-08
CVE-2023-1946 SourceCodester Survey Application System Add New cross site scripting — Survey Application SystemCWE-79 2.4 Low2023-04-07
CVE-2023-1942 SourceCodester Online Computer and Laptop Store Avatar unrestricted upload — Online Computer and Laptop StoreCWE-434 6.3 Medium2023-04-07
CVE-2023-1941 SourceCodester Simple and Beautiful Shopping Cart System login.php sql injection — Simple and Beautiful Shopping Cart SystemCWE-89 7.3 High2023-04-07
CVE-2023-1940 SourceCodester Simple and Beautiful Shopping Cart System delete_user_query.php sql injection — Simple and Beautiful Shopping Cart SystemCWE-89 6.3 Medium2023-04-07
CVE-2023-1908 SourceCodester Simple Mobile Comparison Website GET Parameter view_category.php sql injection — Simple Mobile Comparison WebsiteCWE-89 6.3 Medium2023-04-06
CVE-2023-1858 SourceCodester Earnings and Expense Tracker App index.php information disclosure — Earnings and Expense Tracker AppCWE-200 4.3 Medium2023-04-05
CVE-2023-1857 SourceCodester Online Computer and Laptop Store cross site scripting — Online Computer and Laptop StoreCWE-79 2.4 Low2023-04-05
CVE-2023-1856 SourceCodester Air Cargo Management System GET Parameter track_shipment.php sql injection — Air Cargo Management SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1854 SourceCodester Online Graduate Tracer System session expiration — Online Graduate Tracer SystemCWE-613 4.7 Medium2023-04-05
CVE-2023-1853 SourceCodester Online Payroll System employee_edit.php cross site scripting — Online Payroll SystemCWE-79 3.5 Low2023-04-05
CVE-2023-1852 SourceCodester Online Payroll System deduction_edit.php cross site scripting — Online Payroll SystemCWE-79 3.5 Low2023-04-05
CVE-2023-1851 SourceCodester Online Payroll System employee_add.php cross site scripting — Online Payroll SystemCWE-79 3.5 Low2023-04-05
CVE-2023-1850 SourceCodester Online Payroll System login.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1849 SourceCodester Online Payroll System cashadvance_row.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1848 SourceCodester Online Payroll System attendance_row.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1847 SourceCodester Online Payroll System attendance.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1846 SourceCodester Online Payroll System deduction_row.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05
CVE-2023-1845 SourceCodester Online Payroll System employee_row.php sql injection — Online Payroll SystemCWE-89 6.3 Medium2023-04-05

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.