Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2026-3737 SourceCodester Pet Grooming Management Software User Creation add_user.php improper authorization — Pet Grooming Management SoftwareCWE-285 6.3 Medium2026-03-08
CVE-2026-3734 SourceCodester Client Database Management System Endpoint fetch_manager_details.php improper authorization — Client Database Management SystemCWE-285 7.3 High2026-03-08
CVE-2026-3724 SourceCodester Patients Waiting Area Queue Management System checkin.php improper authorization — Patients Waiting Area Queue Management SystemCWE-285 6.3 Medium2026-03-08
CVE-2026-3702 SourceCodester Loan Management System index.php cross site scripting — Loan Management SystemCWE-79 4.3 Medium2026-03-08
CVE-2026-3695 SourceCodester Modern Image Gallery App delete.php path traversal — Modern Image Gallery AppCWE-22 6.5 Medium2026-03-08
CVE-2026-3401 SourceCodester Web-based Pharmacy Product Management System session expiration — Web-based Pharmacy Product Management SystemCWE-613 3.1 Low2026-03-02
CVE-2026-3302 SourceCodester Doctor Appointment System Sign Up register.php cross site scripting — Doctor Appointment SystemCWE-79 4.3 Medium2026-02-27
CVE-2026-3171 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System queue.php cross site scripting — Patients Waiting Area Queue Management SystemCWE-79 3.5 Low2026-02-25
CVE-2026-3170 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System patient-search.php cross site scripting — Patients Waiting Area Queue Management SystemCWE-79 2.4 Low2026-02-25
CVE-2026-3163 SourceCodester Website Link Extractor URL file_get_contents server-side request forgery — Website Link ExtractorCWE-918 6.3 Medium2026-02-25
CVE-2026-3148 SourceCodester Simple and Nice Shopping Cart Script signup.php sql injection — Simple and Nice Shopping Cart ScriptCWE-89 7.3 High2026-02-25
CVE-2026-3070 SourceCodester Modern Image Gallery App upload.php cross site scripting — Modern Image Gallery AppCWE-79 4.3 Medium2026-02-24
CVE-2026-2984 SourceCodester Student Result Management System drop_user.php denial of service — Student Result Management SystemCWE-404 6.5 Medium2026-02-23
CVE-2026-2983 SourceCodester Student Result Management System Bulk Import import_users.php access control — Student Result Management SystemCWE-284 7.3 High2026-02-23
CVE-2026-2938 SourceCodester Student Result Management System update_smtp.php access control — Student Result Management SystemCWE-284 7.3 High2026-02-22
CVE-2026-2848 SourceCodester Simple Responsive Tourism Website Registration Master.php sql injection — Simple Responsive Tourism WebsiteCWE-89 7.3 High2026-02-20
CVE-2026-2177 SourceCodester Prison Management System Login session fixiation — Prison Management SystemCWE-384 7.3 High2026-02-08
CVE-2026-2160 SourceCodester Simple Responsive Tourism Website Master.php cross site scripting — Simple Responsive Tourism WebsiteCWE-79 4.3 Medium2026-02-08
CVE-2026-2159 SourceCodester Simple Responsive Tourism Website Registration Master.php cross site scripting — Simple Responsive Tourism WebsiteCWE-79 4.3 Medium2026-02-08
CVE-2026-2154 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System Patient Registration registration.php cross site scripting — Patients Waiting Area Queue Management SystemCWE-79 4.3 Medium2026-02-08
CVE-2026-2150 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System checkin.php cross site scripting — Patients Waiting Area Queue Management SystemCWE-79 4.3 Medium2026-02-08
CVE-2026-2149 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System appointments.php cross site scripting — Patients Waiting Area Queue Management SystemCWE-79 4.3 Medium2026-02-08
CVE-2026-2090 SourceCodester Online Class Record System search.php sql injection — Online Class Record SystemCWE-89 7.3 High2026-02-07
CVE-2026-2089 SourceCodester Online Class Record System controller.php sql injection — Online Class Record SystemCWE-89 7.3 High2026-02-07
CVE-2026-2087 SourceCodester Online Class Record System login.php sql injection — Online Class Record SystemCWE-89 7.3 High2026-02-07
CVE-2026-2059 SourceCodester Medical Center Portal Management System emp_edit1.php sql injection — Medical Center Portal Management SystemCWE-89 7.3 High2026-02-06
CVE-2026-2057 SourceCodester Medical Center Portal Management System login.php sql injection — Medical Center Portal Management SystemCWE-89 7.3 High2026-02-06
CVE-2026-2009 SourceCodester Gas Agency Management System createUser.php access control — Gas Agency Management SystemCWE-284 6.3 Medium2026-02-06
CVE-2026-1745 SourceCodester Medical Certificate Generator App cross-site request forgery — Medical Certificate Generator AppCWE-352 4.3 Medium2026-02-02
CVE-2026-1702 SourceCodester Pet Grooming Management Software User Management user.php improper authorization — Pet Grooming Management SoftwareCWE-285 6.3 Medium2026-01-30

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.