目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1336 CNY

100%

SourceCodester 厂商漏洞列表 / CVE 中文分析 1867

SourceCodester 厂商相关 1867 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

SourceCodester 主要提供开源 PHP 源代码及 Web 应用程序下载,供开发者学习与二次开发。其收录项目历史漏洞频发,常见类型包括远程代码执行(RCE)、跨站脚本(XSS)及越权访问等,多因代码审计不足或依赖组件陈旧所致。截至最新统计,已关联 1761 条 CVE。该平台虽非传统安全厂商,但作为代码资源库,其内容质量参差不齐,用户下载使用时需严格进行安全评估与补丁更新,以防范潜在风险。

CVE IDタイトルCVSS深刻度公開日
CVE-2026-4779 SourceCodester Sales and Inventory System HTTP GET Parameter update_customer_details.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4778 SourceCodester Sales and Inventory System HTTP GET Parameter update_category.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4777 SourceCodester Sales and Inventory System POST Parameter view_supplier.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4625 SourceCodester Online Admission System programmes.php sql injection — Online Admission SystemCWE-89 7.3 High2026-03-24
CVE-2026-4624 SourceCodester Online Library Management System Parameter home.php sql injection — Online Library Management SystemCWE-89 7.3 High2026-03-24
CVE-2026-4617 SourceCodester Patients Waiting Area Queue Management System Patient Check-In api_patient_checkin.php ValidateToken improper authorization — Patients Waiting Area Queue Management SystemCWE-285 7.3 High2026-03-24
CVE-2026-4615 SourceCodester Online Catering Reservation search.php sql injection — Online Catering ReservationCWE-89 7.3 High2026-03-23
CVE-2026-4613 SourceCodester E-Commerce Site products.php sql injection — E-Commerce SiteCWE-89 7.3 High2026-03-23
CVE-2026-4574 SourceCodester Simple E-learning System User Profile Update sql injection — Simple E-learning SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4573 SourceCodester Simple E-learning System HTTP GET Parameter delete_post.php sql injection — Simple E-learning SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4572 SourceCodester Sales and Inventory System HTTP POST Request view_product.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4571 SourceCodester Sales and Inventory System HTTP POST Request view_payments.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4570 SourceCodester Sales and Inventory System HTTP POST Request view_customers.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4569 SourceCodester Sales and Inventory System HTTP POST Request view_category.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4568 SourceCodester Sales and Inventory System HTTP GET Request update_supplier.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-23
CVE-2026-4013 SourceCodester Web-based Pharmacy Product Management System add_admin.php improper authorization — Web-based Pharmacy Product Management SystemCWE-285 6.3 Medium2026-03-12
CVE-2026-3819 SourceCodester Resort Reservation System Reservation Management page cross site scripting — Resort Reservation SystemCWE-79 3.5 Low2026-03-09
CVE-2026-3817 SourceCodester Patients Waiting Area Queue Management System patient-search.php improper authorization — Patients Waiting Area Queue Management SystemCWE-285 5.3 Medium2026-03-09
CVE-2026-3806 SourceCodester/janobe Resort Reservation System room_rates.php sql injection — Resort Reservation SystemCWE-89 6.3 Medium2026-03-09
CVE-2026-3800 SourceCodester/janobe Resort Reservation System controller.php doInsert unrestricted upload — Resort Reservation SystemCWE-434 6.3 Medium2026-03-09
CVE-2026-3793 SourceCodester Sales and Inventory System GET Parameter sales_invoice1.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-09
CVE-2026-3792 SourceCodester Sales and Inventory System GET Parameter purchase_invoice.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-09
CVE-2026-3791 SourceCodester Sales and Inventory System Search dashboard.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-09
CVE-2026-3790 SourceCodester Sales and Inventory System POST Parameter check_supplier_details.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-09
CVE-2026-3771 SourceCodester/janobe Resort Reservation System accomodation.php sql injection — Resort Reservation SystemCWE-89 6.3 Medium2026-03-08
CVE-2026-3770 SourceCodester Computer Laboratory Management System cross-site request forgery — Computer Laboratory Management SystemCWE-352 4.3 Medium2026-03-08
CVE-2026-3766 SourceCodester Web-based Pharmacy Product Management System edit-profile.php cross site scripting — Web-based Pharmacy Product Management SystemCWE-79 3.5 Low2026-03-08
CVE-2026-3764 SourceCodester Client Database Management System superadmin_user_update.php improper authorization — Client Database Management SystemCWE-285 7.3 High2026-03-08
CVE-2026-3762 SourceCodester Client Database Management System Endpoint superadmin_delete_manager.php improper authorization — Client Database Management SystemCWE-285 7.3 High2026-03-08
CVE-2026-3761 SourceCodester Client Database Management System Endpoint superadmin_user_delete.php improper authorization — Client Database Management SystemCWE-285 5.4 Medium2026-03-08

本页汇总了 SourceCodester 厂商截至目前公开的全部 1867 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。