Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Found 17 results / 1769Clear Filters
Top products by SourceCodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2026-5531 SourceCodester Student Result Management System HTTP GET Request login_credentials.txt cleartext storage in file — Student Result Management SystemCWE-313 5.3 Medium2026-04-05
CVE-2026-2984 SourceCodester Student Result Management System drop_user.php denial of service — Student Result Management SystemCWE-404 6.5 Medium2026-02-23
CVE-2026-2983 SourceCodester Student Result Management System Bulk Import import_users.php access control — Student Result Management SystemCWE-284 7.3 High2026-02-23
CVE-2026-2938 SourceCodester Student Result Management System update_smtp.php access control — Student Result Management SystemCWE-284 7.3 High2026-02-22
CVE-2025-6477 SourceCodester Student Result Management System System Settings Page system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-22
CVE-2025-6475 SourceCodester Student Result Management System Manage Students Module manage_students cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-22
CVE-2025-5727 SourceCodester Student Result Management System Announcement Page announcement cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5726 SourceCodester Student Result Management System Division System Page division-system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5725 SourceCodester Student Result Management System Grading System Page grading-system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5724 SourceCodester Student Result Management System Subjects Page subjects cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5723 SourceCodester Student Result Management System Classes Page classes cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5722 SourceCodester Student Result Management System Add Academic Term terms cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5721 SourceCodester Student Result Management System Profile Setting Page update_profile cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5649 SourceCodester Student Result Management System Register Interface new_user access control — Student Result Management SystemCWE-284 5.3 Medium2025-06-05
CVE-2025-4912 SourceCodester Student Result Management System Image File update_student.php path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-19
CVE-2025-4898 SourceCodester Student Result Management System Logo File update_system.php unlink path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-18
CVE-2025-4720 SourceCodester Student Result Management System drop_student.php path traversal — Student Result Management SystemCWE-22 5.4 Medium2025-05-15

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.