Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2022-2957 SourceCodester Simple and Nice Shopping Cart Script profile.php sql injection — Simple and Nice Shopping Cart ScriptCWE-89 6.3 Medium2022-08-25
CVE-2022-2842 SourceCodester Gym Management System login.php sql injection — Gym Management SystemCWE-89 7.3 High2022-08-22
CVE-2022-2909 SourceCodester Simple and Nice Shopping Cart Script profile.php unrestricted upload — Simple and Nice Shopping Cart ScriptCWE-434 6.3 Medium2022-08-20
CVE-2022-2876 SourceCodester Student Management System index.php sql injection — Student Management SystemCWE-89 6.3 Medium2022-08-18
CVE-2022-2847 SourceCodester Guest Management System front.php sql injection — Guest Management SystemCWE-89 6.3 Medium2022-08-16
CVE-2022-2814 SourceCodester Simple and Nice Shopping Cart Script login.php cross site scripting — Simple and Nice Shopping Cart ScriptCWE-79 3.5 Low2022-08-15
CVE-2022-2813 SourceCodester Guest Management System cleartext storage — Guest Management SystemCWE-312 4.3 Medium2022-08-14
CVE-2022-2812 SourceCodester Guest Management System index.php sql injection — Guest Management SystemCWE-89 7.3 High2022-08-14
CVE-2022-2811 SourceCodester Guest Management System myform.php cross site scripting — Guest Management SystemCWE-79 3.5 Low2022-08-14
CVE-2022-2804 SourceCodester Zoo Management System apply_vacancy.php unrestricted upload — Zoo Management SystemCWE-434 6.3 Medium2022-08-12
CVE-2022-2803 SourceCodester Zoo Management System animals.php sql injection — Zoo Management SystemCWE-89 6.3 Medium2022-08-12
CVE-2022-2802 SourceCodester Gas Agency Management System login.php sql injection — Gas Agency Management SystemCWE-89 7.3 High2022-08-12
CVE-2022-2801 SourceCodester Automated Beer Parlour Billing System Login sql injection — Automated Beer Parlour Billing SystemCWE-89 6.3 Medium2022-08-12
CVE-2022-2800 SourceCodester Gym Management System clickjacking — Gym Management SystemCWE-451 4.3 Medium2022-08-12
CVE-2022-2797 SourceCodester Student Information System view_student.php sql injection — Student Information SystemCWE-89 6.3 Medium2022-08-12
CVE-2022-2779 SourceCodester Gas Agency Management System oneWord.php unrestricted upload — Gas Agency Management SystemCWE-434 6.3 Medium2022-08-12
CVE-2022-2776 SourceCodester Gym Management System delete_user.php denial of service — Gym Management SystemCWE-404 5.4 Medium2022-08-11
CVE-2022-2774 SourceCodester Library Management System student.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-08-11
CVE-2022-2773 SourceCodester Apartment Visitor Management System profile.php cross site scripting — Apartment Visitor Management SystemCWE-79 3.5 Low2022-08-11
CVE-2022-2772 SourceCodester Apartment Visitor Management System action-visitor.php sql injection — Apartment Visitor Management SystemCWE-89 6.3 Medium2022-08-11
CVE-2022-2771 SourceCodester Simple Online Book Store System bookPerPub.php sql injection — Simple Online Book Store SystemCWE-89 6.3 Medium2022-08-11
CVE-2022-2770 SourceCodester Simple Online Book Store System book.php sql injection — Simple Online Book Store SystemCWE-89 6.3 Medium2022-08-11
CVE-2022-2769 SourceCodester Company Website CMS contact cross site scripting — Company Website CMSCWE-79 3.5 Low2022-08-11
CVE-2022-2768 SourceCodester Library Management System cross site scripting — Library Management SystemCWE-79 3.5 Low2022-08-11
CVE-2022-2767 SourceCodester Online Admission System index.php cross site scripting — Online Admission SystemCWE-79 3.5 Low2022-08-11
CVE-2022-2766 SourceCodester Loan Management System index.php sql injection — Loan Management SystemCWE-89 7.3 High2022-08-11
CVE-2022-2765 SourceCodester Company Website CMS settings improper authentication — Company Website CMSCWE-287 6.3 Medium2022-08-11
CVE-2022-2751 SourceCodester Company Website CMS add-portfolio.php unrestricted upload — Company Website CMSCWE-434 6.3 Medium2022-08-11
CVE-2022-2750 SourceCodester Company Website CMS Add Service add-service.php unrestricted upload — Company Website CMSCWE-434 6.3 Medium2022-08-11
CVE-2022-2749 SourceCodester Gym Management System unrestricted upload — Gym Management SystemCWE-434 4.7 Medium2022-08-11

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.