Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-8153 SourceCodester QR Code Bookmark System delete-bookmark.php cross site scripting — QR Code Bookmark SystemCWE-79 3.5 Low2024-08-25
CVE-2024-8152 SourceCodester QR Code Bookmark System Parameter add-bookmark.php cross site scripting — QR Code Bookmark SystemCWE-79 3.5 Low2024-08-25
CVE-2024-8151 SourceCodester Interactive Map with Marker delete-mark.php cross site scripting — Interactive Map with MarkerCWE-79 3.5 Low2024-08-25
CVE-2024-8142 SourceCodester Daily Calories Monitoring Tool delete-calorie.php cross site scripting — Daily Calories Monitoring ToolCWE-79 3.5 Low2024-08-25
CVE-2024-8141 SourceCodester Daily Calories Monitoring Tool add-calorie.php cross site scripting — Daily Calories Monitoring ToolCWE-79 3.5 Low2024-08-25
CVE-2024-8140 SourceCodester Task Progress Tracker update-task.php cross site scripting — Task Progress TrackerCWE-79 3.5 Low2024-08-25
CVE-2024-8137 SourceCodester Record Management System search_user.php cross site scripting — Record Management SystemCWE-79 3.5 Low2024-08-24
CVE-2024-8136 SourceCodester Record Management System sort1_user.php cross site scripting — Record Management SystemCWE-79 3.5 Low2024-08-24
CVE-2024-8089 SourceCodester E-Commerce System controller.php unrestricted upload — E-Commerce SystemCWE-434 6.3 Medium2024-08-22
CVE-2024-8087 SourceCodester E-Commerce System popup_Item.php sql injection — E-Commerce SystemCWE-89 6.3 Medium2024-08-22
CVE-2024-8086 SourceCodester E-Commerce System Admin Login login.php sql injection — E-Commerce SystemCWE-89 7.3 High2024-08-22
CVE-2024-8084 SourceCodester Online Computer and Laptop Store Setting SystemSettings.php cross site scripting — Online Computer and Laptop StoreCWE-79 2.4 Low2024-08-22
CVE-2024-8083 SourceCodester Online Computer and Laptop Store Master.php sql injection — Online Computer and Laptop StoreCWE-89 6.3 Medium2024-08-22
CVE-2024-8080 SourceCodester Online Health Care System search.php sql injection — Online Health Care SystemCWE-89 6.3 Medium2024-08-22
CVE-2024-7949 SourceCodester Online Graduate Tracer System fetch_genderit.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2024-08-20
CVE-2024-7948 SourceCodester Accounts Manager App Update Account Page update-account.php cross site scripting — Accounts Manager AppCWE-79 3.5 Low2024-08-20
CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection — Point of Sales and Inventory Management SystemCWE-89 7.3 High2024-08-20
CVE-2024-7942 SourceCodester Leads Manager Tool update-leads.php cross site scripting — Leads Manager ToolCWE-79 3.5 Low2024-08-20
CVE-2024-7931 SourceCodester Online Graduate Tracer System view_csprofile.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2024-08-19
CVE-2024-7930 SourceCodester Clinics Patient Management System get_packings.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2024-08-19
CVE-2024-7929 SourceCodester Simple Forum Website Signup Page registration.php cross site scripting — Simple Forum WebsiteCWE-79 5.3 Medium2024-08-19
CVE-2024-7914 SourceCodester Yoga Class Registration System SystemSettings.php cross site scripting — Yoga Class Registration SystemCWE-79 3.5 Low2024-08-18
CVE-2024-7911 SourceCodester Simple Online Bidding System index.php file inclusion — Simple Online Bidding SystemCWE-73 6.3 Medium2024-08-18
CVE-2024-7853 SourceCodester Yoga Class Registration System sql injection — Yoga Class Registration SystemCWE-89 6.3 Medium2024-08-16
CVE-2024-7852 SourceCodester Yoga Class Registration System view_inquiry.php cross site scripting — Yoga Class Registration SystemCWE-79 3.5 Low2024-08-16
CVE-2024-7851 SourceCodester Yoga Class Registration System Add User Users.php improper authorization — Yoga Class Registration SystemCWE-285 6.3 Medium2024-08-16
CVE-2024-7845 SourceCodester Online Graduate Tracer System fetch_it.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2024-08-15
CVE-2024-7844 SourceCodester Online Graduate Tracer System add_acc.php cross site scripting — Online Graduate Tracer SystemCWE-79 3.5 Low2024-08-15
CVE-2024-7843 SourceCodester Online Graduate Tracer System exportcs.php information disclosure — Online Graduate Tracer SystemCWE-200 5.3 Medium2024-08-15
CVE-2024-7842 SourceCodester Online Graduate Tracer System export_it.php information disclosure — Online Graduate Tracer SystemCWE-200 5.3 Medium2024-08-15

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.