Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-6582 SourceCodester Best Salon Management System edit-customer-detailed.php sql injection — Best Salon Management SystemCWE-89 6.3 Medium2025-06-24
CVE-2025-6581 SourceCodester Best Salon Management System add-customer.php sql injection — Best Salon Management SystemCWE-89 6.3 Medium2025-06-24
CVE-2025-6580 SourceCodester Best Salon Management System Login sql injection — Best Salon Management SystemCWE-89 7.3 High2025-06-24
CVE-2025-6477 SourceCodester Student Result Management System System Settings Page system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-22
CVE-2025-6476 SourceCodester Gym Management System cross-site request forgery — Gym Management SystemCWE-352 4.3 Medium2025-06-22
CVE-2025-6475 SourceCodester Student Result Management System Manage Students Module manage_students cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-22
CVE-2025-6355 SourceCodester Online Hotel Reservation System execeditroom.php sql injection — Online Hotel Reservation SystemCWE-89 7.3 High2025-06-20
CVE-2025-6346 SourceCodester Advance Charity Management System fundDetails.php sql injection — Advance Charity Management SystemCWE-89 6.3 Medium2025-06-20
CVE-2025-6345 SourceCodester My Food Recipe Add Recipe Page add-recipe.php addRecipeModal cross site scripting — My Food RecipeCWE-79 3.5 Low2025-06-20
CVE-2025-6161 SourceCodester Simple Food Ordering System editproduct.php unrestricted upload — Simple Food Ordering SystemCWE-434 7.3 High2025-06-17
CVE-2025-6160 SourceCodester Client Database Management System user_customer_create_order.php sql injection — Client Database Management SystemCWE-89 7.3 High2025-06-17
CVE-2025-5984 SourceCodester Online Student Clearance System add-fee.php cross site scripting — Online Student Clearance SystemCWE-79 3.5 Low2025-06-10
CVE-2025-5840 SourceCodester Client Database Management System user_update_customer_order.php unrestricted upload — Client Database Management SystemCWE-434 7.3 High2025-06-07
CVE-2025-5758 SourceCodester Open Source Clinic Management System doctor.php sql injection — Open Source Clinic Management SystemCWE-89 7.3 High2025-06-06
CVE-2025-5755 SourceCodester Open Source Clinic Management System email_config.php sql injection — Open Source Clinic Management SystemCWE-89 7.3 High2025-06-06
CVE-2025-5728 SourceCodester Open Source Clinic Management System manage_website.php unrestricted upload — Open Source Clinic Management SystemCWE-434 6.3 Medium2025-06-06
CVE-2025-5727 SourceCodester Student Result Management System Announcement Page announcement cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5726 SourceCodester Student Result Management System Division System Page division-system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5725 SourceCodester Student Result Management System Grading System Page grading-system cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5724 SourceCodester Student Result Management System Subjects Page subjects cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5723 SourceCodester Student Result Management System Classes Page classes cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5722 SourceCodester Student Result Management System Add Academic Term terms cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5721 SourceCodester Student Result Management System Profile Setting Page update_profile cross site scripting — Student Result Management SystemCWE-79 2.4 Low2025-06-06
CVE-2025-5716 SourceCodester Open Source Clinic Management System login.php sql injection — Open Source Clinic Management SystemCWE-89 7.3 High2025-06-06
CVE-2025-5712 SourceCodester Open Source Clinic Management System appointment.php sql injection — Open Source Clinic Management SystemCWE-89 7.3 High2025-06-06
CVE-2025-5649 SourceCodester Student Result Management System Register Interface new_user access control — Student Result Management SystemCWE-284 5.3 Medium2025-06-05
CVE-2025-5628 SourceCodester Food Menu Manager Add Menu index.php cross site scripting — Food Menu ManagerCWE-79 3.5 Low2025-06-05
CVE-2025-5376 SourceCodester Health Center Patient Record Management System patient.php sql injection — Health Center Patient Record Management SystemCWE-89 7.3 High2025-05-31
CVE-2025-5371 SourceCodester Health Center Patient Record Management System admin.php sql injection — Health Center Patient Record Management SystemCWE-89 7.3 High2025-05-31
CVE-2025-5369 SourceCodester PHP Display Username After Login login.php sql injection — PHP Display Username After LoginCWE-89 7.3 High2025-05-31

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.