Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-0533 SourceCodester Online Tours & Travels Management System expense_report.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0532 SourceCodester Online Tours & Travels Management System disapprove_user.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0531 SourceCodester Online Tours & Travels Management System booking_report.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0530 SourceCodester Online Tours & Travels Management System approve_user.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0529 SourceCodester Online Tours & Travels Management System add_payment.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0528 SourceCodester Online Tours & Travels Management System abc.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27
CVE-2023-0516 SourceCodester Online Tours & Travels Management System Parameter forget_password.php sql injection — Online Tours & Travels Management SystemCWE-89 5.5 Medium2023-01-26
CVE-2023-0515 SourceCodester Online Tours & Travels Management System Parameter forget_password.php sql injection — Online Tours & Travels Management SystemCWE-89 5.5 Medium2023-01-26
CVE-2023-0332 SourceCodester Online Food Ordering System manage_user.php sql injection — Online Food Ordering SystemCWE-89 7.3 High2023-01-17
CVE-2023-0324 SourceCodester Online Tours & Travels Management System page-login.php sql injection — Online Tours & Travels Management SystemCWE-89 7.3 High2023-01-16
CVE-2023-0305 SourceCodester Online Food Ordering System Login Module admin_class.php sql injection — Online Food Ordering SystemCWE-89 6.3 Medium2023-01-15
CVE-2023-0304 SourceCodester Online Food Ordering System Signup Module admin_class.php sql injection — Online Food Ordering SystemCWE-89 6.3 Medium2023-01-15
CVE-2023-0303 SourceCodester Online Food Ordering System view_prod.php sql injection — Online Food Ordering SystemCWE-89 6.3 Medium2023-01-15
CVE-2023-0283 SourceCodester Online Flight Booking Management System POST Parameter review_search.php sql injection — Online Flight Booking Management SystemCWE-89 6.3 Medium2023-01-13
CVE-2023-0281 SourceCodester Online Flight Booking Management System judge_panel.php sql injection — Online Flight Booking Management SystemCWE-89 6.3 Medium2023-01-13
CVE-2023-0258 SourceCodester Online Food Ordering System Category List cross site scripting — Online Food Ordering SystemCWE-79 2.4 Low2023-01-12
CVE-2023-0257 SourceCodester Online Food Ordering System Menu Form unrestricted upload — Online Food Ordering SystemCWE-434 4.7 Medium2023-01-12
CVE-2023-0256 SourceCodester Online Food Ordering System Login Page sql injection — Online Food Ordering SystemCWE-89 6.3 Medium2023-01-12
CVE-2023-0245 SourceCodester Online Flight Booking Management System add_contestant.php sql injection — Online Flight Booking Management SystemCWE-89 6.3 Medium2023-01-12
CVE-2022-2666 SourceCodester Loan Management System login.php sql injection — Loan Management SystemCWE-89 6.3 Medium2023-01-07
CVE-2022-1102 SourceCodester Royale Event Management System companyprofile.php cross site scripting — Royale Event Management SystemCWE-79 4.3 Medium2023-01-07
CVE-2022-1101 SourceCodester Royale Event Management System userregister.php improper authentication — Royale Event Management SystemCWE-287 7.3 High2023-01-07
CVE-2022-4855 SourceCodester Lead Management System login.php sql injection — Lead Management SystemCWE-89 7.3 High2022-12-30
CVE-2022-4739 SourceCodester School Dormitory Management System Admin Login sql injection — School Dormitory Management SystemCWE-89 7.3 High2022-12-25
CVE-2022-4738 SourceCodester Blood Bank Management System User Registration cross site scripting — Blood Bank Management SystemCWE-79 4.3 Medium2022-12-25
CVE-2022-4737 SourceCodester Blood Bank Management System login.php sql injection — Blood Bank Management SystemCWE-89 7.3 High2022-12-25
CVE-2022-4726 SourceCodester Sanitization Management System Admin Login sql injection — Sanitization Management SystemCWE-707 6.3 Medium2022-12-24
CVE-2022-4403 SourceCodester Canteen Management System ajax_represent.php sql injection — Canteen Management SystemCWE-707 6.3 Medium2022-12-11
CVE-2022-4273 SourceCodester Human Resource Management System Content-Type employee.php unrestricted upload — Human Resource Management SystemCWE-266 7.3 High2022-12-03
CVE-2022-4278 SourceCodester Human Resource Management System employeeadd.php sql injection — Human Resource Management SystemCWE-707 4.7 Medium2022-12-03

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.