Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-10407 SourceCodester Petrol Pump Management Software edit_customer.php sql injection — Petrol Pump Management SoftwareCWE-89 6.3 Medium2024-10-26
CVE-2024-10406 SourceCodester Petrol Pump Management Software edit_fuel.php sql injection — Petrol Pump Management SoftwareCWE-89 6.3 Medium2024-10-26
CVE-2024-10380 SourceCodester Petrol Pump Management Software ajax_product.php sql injection — Petrol Pump Management SoftwareCWE-89 6.3 Medium2024-10-25
CVE-2024-10371 SourceCodester Payroll Management System main login buffer overflow — Payroll Management SystemCWE-120 6.3 Medium2024-10-25
CVE-2024-10355 SourceCodester Petrol Pump Management Software invoice.php sql injection — Petrol Pump Management SoftwareCWE-89 4.7 Medium2024-10-25
CVE-2024-10354 SourceCodester Petrol Pump Management Software print.php sql injection — Petrol Pump Management SoftwareCWE-89 4.7 Medium2024-10-25
CVE-2024-10353 SourceCodester Online Exam System admin-dashboard access control — Online Exam SystemCWE-284 6.3 Medium2024-10-24
CVE-2024-10349 SourceCodester Best House Rental Management System ajax.php delete_tenant sql injection — Best House Rental Management SystemCWE-89 6.3 Medium2024-10-24
CVE-2024-10348 SourceCodester Best House Rental Management System Manage Tenant Details index.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-10-24
CVE-2024-10335 SourceCodester Garbage Collection Management System login.php sql injection — Garbage Collection Management SystemCWE-89 7.3 High2024-10-24
CVE-2024-10163 SourceCodester Sentiment Based Movie Rating System movie_details.php sql injection — Sentiment Based Movie Rating SystemCWE-89 6.3 Medium2024-10-20
CVE-2024-9975 SourceCodester Drag and Drop Image Upload upload.php unrestricted upload — Drag and Drop Image UploadCWE-434 6.3 Medium2024-10-15
CVE-2024-9974 SourceCodester Online Eyewear Shop POST Request Master.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-10-15
CVE-2024-9973 SourceCodester Online Eyewear Shop Report Viewing Page page sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-10-15
CVE-2024-9952 SourceCodester Online Eyewear Shop Contact Information Page contact_info cross site scripting — Online Eyewear ShopCWE-79 2.4 Low2024-10-15
CVE-2024-9906 SourceCodester Online Eyewear Shop cross site scripting — Online Eyewear ShopCWE-79 3.5 Low2024-10-13
CVE-2024-9905 SourceCodester Online Eyewear Shop sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-10-13
CVE-2024-9818 SourceCodester Online Veterinary Appointment System manage_category.php sql injection — Online Veterinary Appointment SystemCWE-89 7.3 High2024-10-10
CVE-2024-9810 SourceCodester Record Management System sort2_user.php cross site scripting — Record Management SystemCWE-79 3.5 Low2024-10-10
CVE-2024-9809 SourceCodester Online Eyewear Shop Master.php delete_product sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-10-10
CVE-2024-9808 SourceCodester Online Eyewear Shop sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-10-10
CVE-2024-9799 SourceCodester Profile Registration without Reload Refresh add.php cross site scripting — Profile Registration without Reload RefreshCWE-79 3.5 Low2024-10-10
CVE-2024-9328 SourceCodester Advocate Office Management System edit_client.php sql injection — Advocate Office Management SystemCWE-89 6.3 Medium2024-09-29
CVE-2024-9323 SourceCodester Inventory Management System add_staff.php cross site scripting — Inventory Management SystemCWE-79 3.5 Low2024-09-29
CVE-2024-9321 SourceCodester Online Railway Reservation System view_details.php access control — Online Railway Reservation SystemCWE-284 5.3 Medium2024-09-29
CVE-2024-9320 SourceCodester Online Timesheet App Add Timesheet Form add-timesheet.php cross site scripting — Online Timesheet AppCWE-79 3.5 Low2024-09-29
CVE-2024-9319 SourceCodester Online Timesheet App delete-timesheet.php sql injection — Online Timesheet AppCWE-89 6.3 Medium2024-09-28
CVE-2024-9318 SourceCodester Advocate Office Management System activate.php sql injection — Advocate Office Management SystemCWE-89 6.3 Medium2024-09-28
CVE-2024-9317 SourceCodester Online Eyewear Shop Master.php delete_category sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-09-28
CVE-2024-9315 SourceCodester Employee and Visitor Gate Pass Logging System manage_department.php sql injection — Employee and Visitor Gate Pass Logging SystemCWE-89 6.3 Medium2024-09-28

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.