Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2022-3546 SourceCodester Simple Cold Storage Management System Create User cross site scripting — Simple Cold Storage Management SystemCWE-707 2.4 Low2022-10-17
CVE-2022-3547 SourceCodester Simple Cold Storage Management System Setting cross site scripting — Simple Cold Storage Management SystemCWE-707 2.4 Low2022-10-17
CVE-2022-3548 SourceCodester Simple Cold Storage Management System Add New Storage cross site scripting — Simple Cold Storage Management SystemCWE-707 2.4 Low2022-10-17
CVE-2022-3549 SourceCodester Simple Cold Storage Management System Avatar unrestricted upload — Simple Cold Storage Management SystemCWE-266 4.7 Medium2022-10-17
CVE-2022-3518 SourceCodester Sanitization Management System User Creation cross site scripting — Sanitization Management SystemCWE-707 2.4 Low2022-10-15
CVE-2022-3519 SourceCodester Sanitization Management System Quote Requests Tab cross site scripting — Sanitization Management SystemCWE-707 2.4 Low2022-10-15
CVE-2022-3495 SourceCodester Simple Online Public Access Catalog Admin Login sql injection — Simple Online Public Access CatalogCWE-707 7.3 High2022-10-14
CVE-2022-3496 SourceCodester Human Resource Management System Admin Panel employeeadd.php access control — Human Resource Management SystemCWE-266 6.3 Medium2022-10-14
CVE-2022-3497 SourceCodester Human Resource Management System Master List cross site scripting — Human Resource Management SystemCWE-707 3.5 Low2022-10-14
CVE-2022-3503 SourceCodester Purchase Order Management System Supplier cross site scripting — Purchase Order Management SystemCWE-707 3.5 Low2022-10-14
CVE-2022-3504 SourceCodester Sanitization Management System sql injection — Sanitization Management SystemCWE-707 6.3 Medium2022-10-14
CVE-2022-3505 SourceCodester Sanitization Management System cross site scripting — Sanitization Management SystemCWE-707 3.5 Low2022-10-14
CVE-2022-3492 SourceCodester Human Resource Management System Profile Photo os command injection — Human Resource Management SystemCWE-707 6.3 Medium2022-10-13
CVE-2022-3493 SourceCodester Human Resource Management System Add Employee cross site scripting — Human Resource Management SystemCWE-707 3.5 Low2022-10-13
CVE-2022-3458 SourceCodester Human Resource Management System Image File employeeview.php unrestricted upload — Human Resource Management SystemCWE-266 6.3 Medium2022-10-12
CVE-2022-3470 SourceCodester Human Resource Management System getstatecity.php sql injection — Human Resource Management SystemCWE-707 6.3 Medium2022-10-12
CVE-2022-3471 SourceCodester Human Resource Management System city.php sql injection — Human Resource Management SystemCWE-707 6.3 Medium2022-10-12
CVE-2022-3472 SourceCodester Human Resource Management System city.php sql injection — Human Resource Management SystemCWE-707 6.3 Medium2022-10-12
CVE-2022-3473 SourceCodester Human Resource Management System getstatecity.php sql injection — Human Resource Management SystemCWE-707 6.3 Medium2022-10-12
CVE-2022-3452 SourceCodester Book Store Management System category.php cross site scripting — Book Store Management SystemCWE-707 3.5 Low2022-10-11
CVE-2022-3453 SourceCodester Book Store Management System transcation.php cross site scripting — Book Store Management SystemCWE-707 3.5 Low2022-10-11
CVE-2022-3436 SourceCodester Web-Based Student Clearance System Photo edit-photo.php unrestricted upload — Web-Based Student Clearance SystemCWE-266 6.3 Medium2022-10-09
CVE-2022-3434 SourceCodester Web-Based Student Clearance System add-student.php prepare cross site scripting — Web-Based Student Clearance SystemCWE-707 3.5 Low2022-10-08
CVE-2022-3414 SourceCodester Web-Based Student Clearance System POST Parameter login.php sql injection — Web-Based Student Clearance SystemCWE-707 5.0 Medium2022-10-07
CVE-2022-3332 SourceCodester Food Ordering Management System POST Parameter router.php sql injection — Food Ordering Management SystemCWE-707 6.3 Medium2022-09-28
CVE-2022-3122 SourceCodester Clinics Patient Management System medicine_details.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2022-09-05
CVE-2022-3121 SourceCodester Online Employee Leave Management System addemployee.php cross-site request forgery — Online Employee Leave Management SystemCWE-352 4.3 Medium2022-09-05
CVE-2022-3120 SourceCodester Clinics Patient Management System Login index.php sql injection — Clinics Patient Management SystemCWE-89 7.3 High2022-09-05
CVE-2022-3014 SourceCodester Simple Task Managing System cross site scripting — Simple Task Managing SystemCWE-79 3.5 Low2022-08-27
CVE-2022-3013 SourceCodester Simple Task Managing System loginVaLidation.php sql injection — Simple Task Managing SystemCWE-89 6.3 Medium2022-08-27

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.