Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-9300 SourceCodester Online Railway Reservation System Message Us Form contact_us.php cross site scripting — Online Railway Reservation SystemCWE-79 4.3 Medium2024-09-28
CVE-2024-9299 SourceCodester Online Railway Reservation System ?page=reserve cross site scripting — Online Railway Reservation SystemCWE-79 3.5 Low2024-09-28
CVE-2024-9298 SourceCodester Online Railway Reservation System Ticket ?page=tickets access control — Online Railway Reservation SystemCWE-284 4.3 Medium2024-09-28
CVE-2024-9297 SourceCodester Online Railway Reservation System admin improper authorization — Online Railway Reservation SystemCWE-285 6.3 Medium2024-09-28
CVE-2024-9296 SourceCodester Advocate Office Management System forgot_pass.php sql injection — Advocate Office Management SystemCWE-89 7.3 High2024-09-28
CVE-2024-9295 SourceCodester Advocate Office Management System login.php sql injection — Advocate Office Management SystemCWE-89 7.3 High2024-09-28
CVE-2024-9093 SourceCodester Profile Registration without Reload Refresh GET Parameter del.php sql injection — Profile Registration without Reload RefreshCWE-89 6.3 Medium2024-09-23
CVE-2024-9092 SourceCodester Profile Registration without Reload Refresh Registration Form add.php cross site scripting — Profile Registration without Reload RefreshCWE-79 3.5 Low2024-09-23
CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection — Modern Loan Management SystemCWE-89 6.3 Medium2024-09-22
CVE-2024-9089 SourceCodester Modern Loan Management System update_loan_record.php cross site scripting — Modern Loan Management SystemCWE-79 3.5 Low2024-09-22
CVE-2024-9088 SourceCodester Telecom Billing Management System login buffer overflow — Telecom Billing Management SystemCWE-120 6.3 Medium2024-09-22
CVE-2024-9083 SourceCodester Employee Management System add-admin.php cross site scripting — Employee Management SystemCWE-79 2.4 Low2024-09-22
CVE-2024-9082 SourceCodester Online Eyewear Shop User Creation Users.php improper authorization — Online Eyewear ShopCWE-285 6.3 Medium2024-09-22
CVE-2024-9081 SourceCodester Online Eyewear Shop view_category.php sql injection — Online Eyewear ShopCWE-89 6.3 Medium2024-09-22
CVE-2024-9041 SourceCodester Best House Rental Management System ajax.php sql injection — Best House Rental Management SystemCWE-89 6.3 Medium2024-09-20
CVE-2024-9039 SourceCodester Best House Rental Management System ajax.php sql injection — Best House Rental Management SystemCWE-89 7.3 High2024-09-20
CVE-2024-9033 SourceCodester Best House Rental Management System ajax.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-09-20
CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal — Simple Forum-Discussion SystemCWE-22 6.3 Medium2024-09-20
CVE-2024-9008 SourceCodester Best Online News Portal Comment Section news-details.php sql injection — Best Online News PortalCWE-89 6.3 Medium2024-09-19
CVE-2024-8951 SourceCodester Resort Reservation System manage_fee.php cross site scripting — Resort Reservation SystemCWE-79 3.5 Low2024-09-17
CVE-2024-8949 SourceCodester Online Eyewear Shop Cart Content Master.php improper ownership management — Online Eyewear ShopCWE-282 6.3 Medium2024-09-17
CVE-2024-8711 SourceCodester Food Ordering Management System includes exposure of information through directory listing — Food Ordering Management SystemCWE-548 5.3 Medium2024-09-12
CVE-2024-8709 SourceCodester Best House Rental Management System admin_class.php save_user sql injection — Best House Rental Management SystemCWE-89 6.3 Medium2024-09-12
CVE-2024-8708 SourceCodester Best House Rental Management System categories.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-09-12
CVE-2024-8610 SourceCodester Best House Rental Management System New Tenant Page index.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-09-09
CVE-2024-8604 SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting — Online Food Ordering SystemCWE-79 4.3 Medium2024-09-09
CVE-2024-8583 SourceCodester Online Bank Management System Feedback mfeedback.php cross site scripting — Online Bank Management SystemCWE-79 3.5 Low2024-09-08
CVE-2024-8582 SourceCodester Food Ordering Management System index.php cross site scripting — Food Ordering Management SystemCWE-79 3.5 Low2024-09-08
CVE-2024-8564 SourceCodester PHP CRUD update.php sql injection — PHP CRUDCWE-89 6.3 Medium2024-09-07
CVE-2024-8563 SourceCodester PHP CRUD update.php cross site scripting — PHP CRUDCWE-79 3.5 Low2024-09-07

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.