Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2025-0173 SourceCodester Online Eyewear Shop view_order.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2025-01-02
CVE-2024-13069 SourceCodester Multi Role Login System add-user.php cross site scripting — Multi Role Login SystemCWE-79 3.5 Low2024-12-31
CVE-2024-13021 SourceCodester Road Accident Map Marker add-mark.php cross site scripting — Road Accident Map MarkerCWE-79 3.5 Low2024-12-29
CVE-2024-12536 SourceCodester Kortex Lite Advocate Office Management System client_data.php cross site scripting — Kortex Lite Advocate Office Management SystemCWE-79 3.5 Low2024-12-12
CVE-2024-12357 SourceCodester Best House Rental Management System index.php file inclusion — Best House Rental Management SystemCWE-73 4.3 Medium2024-12-09
CVE-2024-12355 SourceCodester Phone Contact Manager System ContactBook.cpp adding input validation — Phone Contact Manager SystemCWE-20 3.3 Low2024-12-09
CVE-2024-12354 SourceCodester Phone Contact Manager System User Menu MenuDisplayStart buffer overflow — Phone Contact Manager SystemCWE-120 5.3 Medium2024-12-09
CVE-2024-12353 SourceCodester Phone Contact Manager System User Menu MenuDisplayStart input validation — Phone Contact Manager SystemCWE-20 3.3 Low2024-12-09
CVE-2024-11860 SourceCodester Best House Rental Management System POST Request ajax.php improper authorization — Best House Rental Management SystemCWE-285 6.5 Medium2024-11-27
CVE-2024-11743 SourceCodester Best House Rental Management System POST Request ajax.php cross-site request forgery — Best House Rental Management SystemCWE-352 4.3 Medium2024-11-26
CVE-2024-11742 SourceCodester Best House Rental Management System ajax.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-11-26
CVE-2024-11262 SourceCodester Student Record Management System View All Student Marks main stack-based overflow — Student Record Management SystemCWE-121 5.3 Medium2024-11-15
CVE-2024-11261 SourceCodester Student Record Management System Number of Students Menu StudentRecordManagementSystem.cpp memory corruption — Student Record Management SystemCWE-119 5.3 Medium2024-11-15
CVE-2024-11247 SourceCodester Online Eyewear Shop Inventory Page Master.php cross site scripting — Online Eyewear ShopCWE-79 3.5 Low2024-11-15
CVE-2024-11214 SourceCodester Best Employee Management System profile.php unrestricted upload — Best Employee Management SystemCWE-434 4.7 Medium2024-11-14
CVE-2024-11213 SourceCodester Best Employee Management System edit_role.php sql injection — Best Employee Management SystemCWE-89 4.7 Medium2024-11-14
CVE-2024-11212 SourceCodester Best Employee Management System fetch_product_details.php sql injection — Best Employee Management SystemCWE-89 6.3 Medium2024-11-14
CVE-2024-11102 SourceCodester Hospital Management System edit-doc.php cross site scripting — Hospital Management SystemCWE-79 3.5 Low2024-11-12
CVE-2024-11097 SourceCodester Student Record Management System Main Menu infinite loop — Student Record Management SystemCWE-835 3.3 Low2024-11-12
CVE-2024-11073 SourceCodester Hospital Management System delete-account.php improper authorization — Hospital Management SystemCWE-285 4.3 Medium2024-11-11
CVE-2024-11054 SourceCodester Simple Music Cloud Community System ajax.php unrestricted upload — Simple Music Cloud Community SystemCWE-434 6.3 Medium2024-11-10
CVE-2024-10990 SourceCodester Online Veterinary Appointment System view_service.php sql injection — Online Veterinary Appointment SystemCWE-89 6.3 Medium2024-11-08
CVE-2024-10559 SourceCodester Airport Booking Management System details buffer overflow — Airport Booking Management SystemCWE-120 5.3 Medium2024-10-31
CVE-2024-10450 SourceCodester Kortex Lite Advocate Office Management System POST Parameter edit_profile.php sql injection — Kortex Lite Advocate Office Management SystemCWE-89 6.3 Medium2024-10-28
CVE-2024-10422 SourceCodester Attendance and Payroll System overtime_add.php sql injection — Attendance and Payroll SystemCWE-89 6.3 Medium2024-10-27
CVE-2024-10421 SourceCodester Attendance and Payroll System overtime_row.php sql injection — Attendance and Payroll SystemCWE-89 6.3 Medium2024-10-27
CVE-2024-10420 SourceCodester Attendance and Payroll System update.php upload unrestricted upload — Attendance and Payroll SystemCWE-434 6.3 Medium2024-10-27
CVE-2024-10413 SourceCodester Online Hotel Reservation System update.php upload unrestricted upload — Online Hotel Reservation SystemCWE-434 6.3 Medium2024-10-27
CVE-2024-10411 SourceCodester Online Hotel Reservation System controller.php doCheckout sql injection — Online Hotel Reservation SystemCWE-89 6.3 Medium2024-10-27
CVE-2024-10410 SourceCodester Online Hotel Reservation System controller.php upload unrestricted upload — Online Hotel Reservation SystemCWE-434 6.3 Medium2024-10-27

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.