Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-8562 SourceCodester PHP CRUD Add.php cross site scripting — PHP CRUDCWE-79 3.5 Low2024-09-07
CVE-2024-8561 SourceCodester PHP CRUD Delete Person delete.php sql injection — PHP CRUDCWE-89 6.3 Medium2024-09-07
CVE-2024-8560 SourceCodester Simple Invoice Generator System save_invoice.php sql injection — Simple Invoice Generator SystemCWE-89 6.3 Medium2024-09-07
CVE-2024-8559 SourceCodester Online Food Menu delete-menu.php sql injection — Online Food MenuCWE-89 4.7 Medium2024-09-07
CVE-2024-8558 SourceCodester Food Ordering Management System Price place-order.php improper validation of specified quantity in input — Food Ordering Management SystemCWE-1284 4.3 Medium2024-09-07
CVE-2024-8557 SourceCodester Food Ordering Management System cancel-order.php sql injection — Food Ordering Management SystemCWE-89 6.3 Medium2024-09-07
CVE-2024-8555 SourceCodester Clinics Patient Management System congratulations.php redirect — Clinics Patient Management SystemCWE-601 4.3 Medium2024-09-07
CVE-2024-8554 SourceCodester Clinics Patient Management System users.php cross site scripting — Clinics Patient Management SystemCWE-79 3.5 Low2024-09-07
CVE-2024-8416 SourceCodester Food Ordering Management System ticket-status.php sql injection — Food Ordering Management SystemCWE-89 6.3 Medium2024-09-04
CVE-2024-8415 SourceCodester Food Ordering Management System add-ticket.php sql injection — Food Ordering Management SystemCWE-89 6.3 Medium2024-09-04
CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery — Insurance Management SystemCWE-352 4.3 Medium2024-09-04
CVE-2024-8380 SourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php sql injection — Contact Manager with Export to VCFCWE-89 6.3 Medium2024-09-03
CVE-2024-8348 SourceCodester Computer Laboratory Management System Master.php delete_category sql injection — Computer Laboratory Management SystemCWE-89 6.3 Medium2024-08-30
CVE-2024-8347 SourceCodester Computer Laboratory Management System Master.php delete_record sql injection — Computer Laboratory Management SystemCWE-89 6.3 Medium2024-08-30
CVE-2024-8346 SourceCodester Computer Laboratory Management System SystemSettings.php update_settings_info sql injection — Computer Laboratory Management SystemCWE-89 6.3 Medium2024-08-30
CVE-2024-8345 SourceCodester Music Gallery Site Users.php sql injection — Music Gallery SiteCWE-89 6.3 Medium2024-08-30
CVE-2024-8343 SourceCodester Sentiment Based Movie Rating System User Registration Users.php sql injection — Sentiment Based Movie Rating SystemCWE-89 7.3 High2024-08-30
CVE-2024-8342 SourceCodester Petshop Management System add_client.php unrestricted upload — Petshop Management SystemCWE-434 6.3 Medium2024-08-30
CVE-2024-8341 SourceCodester Petshop Management System add_user.php unrestricted upload — Petshop Management SystemCWE-434 6.3 Medium2024-08-30
CVE-2024-8340 SourceCodester Electric Billing Management System Actions.php sql injection — Electric Billing Management SystemCWE-89 7.3 High2024-08-30
CVE-2024-8339 SourceCodester Electric Billing Management System Connection Code ?page=tracks sql injection — Electric Billing Management SystemCWE-89 6.3 Medium2024-08-30
CVE-2024-8337 SourceCodester Contact Manager with Export to VCF index.html cross site scripting — Contact Manager with Export to VCFCWE-79 3.5 Low2024-08-30
CVE-2024-8336 SourceCodester Music Gallery Site Master.php sql injection — Music Gallery SiteCWE-89 6.3 Medium2024-08-30
CVE-2024-8223 SourceCodester Music Gallery Site Master.php sql injection — Music Gallery SiteCWE-89 6.3 Medium2024-08-27
CVE-2024-8222 SourceCodester Music Gallery Site sql injection — Music Gallery SiteCWE-89 6.3 Medium2024-08-27
CVE-2024-8221 SourceCodester Music Gallery Site manage_category.php sql injection — Music Gallery SiteCWE-89 6.3 Medium2024-08-27
CVE-2024-8217 SourceCodester E-Commerce Website registration.php sql injection — E-Commerce WebsiteCWE-89 7.3 High2024-08-27
CVE-2024-8172 SourceCodester QR Code Attendance System delete-student.php cross site scripting — QR Code Attendance SystemCWE-79 3.5 Low2024-08-26
CVE-2024-8170 SourceCodester Zipped Folder Manager App add-folder.php unrestricted upload — Zipped Folder Manager AppCWE-434 3.5 Low2024-08-26
CVE-2024-8154 SourceCodester QR Code Bookmark System Parameter update-bookmark.php cross site scripting — QR Code Bookmark SystemCWE-79 3.5 Low2024-08-25

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.