Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-1352 SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System login.php sql injection — Design and Implementation of Covid-19 Directory on Vaccination SystemCWE-89 5.6 Medium2023-03-11
CVE-2023-1351 SourceCodester Computer Parts Sales and Inventory System cust_transac.php sql injection — Computer Parts Sales and Inventory SystemCWE-89 6.3 Medium2023-03-11
CVE-2023-1311 SourceCodester Friendly Island Pizza Website and Ordering System GET Parameter large.php sql injection — Friendly Island Pizza Website and Ordering SystemCWE-89 6.3 Medium2023-03-10
CVE-2023-1310 SourceCodester Online Graduate Tracer System prof.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2023-03-10
CVE-2023-1309 SourceCodester Online Graduate Tracer System search_it.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2023-03-10
CVE-2023-1308 SourceCodester Online Graduate Tracer System adminlog.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2023-03-10
CVE-2023-1302 SourceCodester File Tracker Manager System borrow1.php cross site scripting — File Tracker Manager SystemCWE-79 3.5 Low2023-03-09
CVE-2023-1301 SourceCodester Friendly Island Pizza Website and Ordering System GET Parameter deleteorder.php sql injection — Friendly Island Pizza Website and Ordering SystemCWE-89 6.3 Medium2023-03-09
CVE-2023-1300 SourceCodester COVID 19 Testing Management System POST Parameter patient-report.php sql injection — COVID 19 Testing Management SystemCWE-89 6.3 Medium2023-03-09
CVE-2023-1294 SourceCodester File Tracker Manager System POST Parameter login.php sql injection — File Tracker Manager SystemCWE-89 7.3 High2023-03-09
CVE-2023-1293 SourceCodester Online Graduate Tracer System admin_cs.php mysqli_query sql injection — Online Graduate Tracer SystemCWE-89 5.0 Medium2023-03-09
CVE-2023-1292 SourceCodester Sales Tracker Management System Master.php delete_client sql injection — Sales Tracker Management SystemCWE-89 6.3 Medium2023-03-09
CVE-2023-1291 SourceCodester Sales Tracker Management System manage_client.php sql injection — Sales Tracker Management SystemCWE-89 6.3 Medium2023-03-09
CVE-2023-1290 SourceCodester Sales Tracker Management System view_client.php sql injection — Sales Tracker Management SystemCWE-89 6.3 Medium2023-03-09
CVE-2023-1275 SourceCodester Phone Shop Sales Managements System CAPTCHA index.php cross site scripting — Phone Shop Sales Managements SystemCWE-79 3.5 Low2023-03-08
CVE-2023-1254 SourceCodester Health Center Patient Record Management System birthing_print.php cross site scripting — Health Center Patient Record Management SystemCWE-79 3.5 Low2023-03-07
CVE-2023-1253 SourceCodester Health Center Patient Record Management System login.php sql injection — Health Center Patient Record Management SystemCWE-89 7.3 High2023-03-07
CVE-2023-1180 SourceCodester Health Center Patient Record Management System hematology_print.php cross site scripting — Health Center Patient Record Management SystemCWE-79 3.5 Low2023-03-05
CVE-2023-1179 SourceCodester Computer Parts Sales and Inventory System Add Supplier cross site scripting — Computer Parts Sales and Inventory SystemCWE-79 3.5 Low2023-03-05
CVE-2023-1156 SourceCodester Health Center Patient Record Management System fecalysis_form.php cross site scripting — Health Center Patient Record Management SystemCWE-79 3.5 Low2023-03-02
CVE-2023-1151 SourceCodester Electronic Medical Records System Cookie administrator.php sql injection — Electronic Medical Records SystemCWE-89 6.3 Medium2023-03-02
CVE-2023-1131 SourceCodester Computer Parts Sales and Inventory System customer.php cross site scripting — Computer Parts Sales and Inventory SystemCWE-79 3.5 Low2023-03-01
CVE-2023-1130 SourceCodester Computer Parts Sales and Inventory System processlogin sql injection — Computer Parts Sales and Inventory SystemCWE-89 6.3 Medium2023-03-01
CVE-2023-1113 SourceCodester Simple Payroll System POST Parameter cross site scripting — Simple Payroll SystemCWE-79 2.4 Low2023-03-01
CVE-2023-1100 SourceCodester Online Catering Reservation System POST Parameter add_message.php sql injection — Online Catering Reservation SystemCWE-89 6.3 Medium2023-02-28
CVE-2023-1099 SourceCodester Online Student Management System edit-class-detail.php sql injection — Online Student Management SystemCWE-89 6.3 Medium2023-02-28
CVE-2023-1063 SourceCodester Doctors Appointment System Parameter patient.php sql injection — Doctors Appointment SystemCWE-89 6.3 Medium2023-02-27
CVE-2023-1062 SourceCodester Doctors Appointment System Parameter add-new.php sql injection — Doctors Appointment SystemCWE-89 6.3 Medium2023-02-27
CVE-2023-1061 SourceCodester Doctors Appointment System edit-doc.php sql injection — Doctors Appointment SystemCWE-89 6.3 Medium2023-02-27
CVE-2023-1059 SourceCodester Doctors Appointment System Parameter doctors.php sql injection — Doctors Appointment SystemCWE-89 6.3 Medium2023-02-27

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.