Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2024-7841 SourceCodester Clinics Patient Management System check_user_name.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2024-08-15
CVE-2024-7813 SourceCodester Prison Management System Profile Image insufficiently protected credentials — Prison Management SystemCWE-522 5.3 Medium2024-08-15
CVE-2024-7812 SourceCodester Best House Rental Management System POST Parameter ajax.php cross site scripting — Best House Rental Management SystemCWE-79 3.5 Low2024-08-15
CVE-2024-7811 SourceCodester Daily Expenses Monitoring App delete-expense.php sql injection — Daily Expenses Monitoring AppCWE-89 6.3 Medium2024-08-15
CVE-2024-7810 SourceCodester Online Graduate Tracer System view_itprofile.php sql injection — Online Graduate Tracer SystemCWE-89 6.3 Medium2024-08-15
CVE-2024-7809 SourceCodester Online Graduate Tracer System nbproject exposure of information through directory listing — Online Graduate Tracer SystemCWE-548 5.3 Medium2024-08-15
CVE-2024-7800 SourceCodester Simple Online Bidding System ajax.php sql injection — Simple Online Bidding SystemCWE-89 6.3 Medium2024-08-14
CVE-2024-7799 SourceCodester Simple Online Bidding System users.php improper authorization — Simple Online Bidding SystemCWE-285 5.3 Medium2024-08-14
CVE-2024-7798 SourceCodester Simple Online Bidding System ajax.php sql injection — Simple Online Bidding SystemCWE-89 7.3 High2024-08-14
CVE-2024-7797 SourceCodester Simple Online Bidding System ajax.php sql injection — Simple Online Bidding SystemCWE-89 7.3 High2024-08-14
CVE-2024-7793 SourceCodester Task Progress Tracker add-task.php cross site scripting — Task Progress TrackerCWE-79 3.5 Low2024-08-14
CVE-2024-7792 SourceCodester Task Progress Tracker delete-task.php sql injection — Task Progress TrackerCWE-89 6.3 Medium2024-08-14
CVE-2024-7754 SourceCodester Clinics Patient Management System check_medicine_name.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2024-08-14
CVE-2024-7753 SourceCodester Clinics Patient Management System user_images direct request — Clinics Patient Management SystemCWE-425 5.3 Medium2024-08-14
CVE-2024-7752 SourceCodester Clinics Patient Management System update_medicine.php cross site scripting — Clinics Patient Management SystemCWE-79 3.5 Low2024-08-13
CVE-2024-7751 SourceCodester Clinics Patient Management System update_medicine.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2024-08-13
CVE-2024-7750 SourceCodester Clinics Patient Management System medicines.php sql injection — Clinics Patient Management SystemCWE-89 6.3 Medium2024-08-13
CVE-2024-7749 SourceCodester Accounts Manager App add-account.php cross site scripting — Accounts Manager AppCWE-79 3.5 Low2024-08-13
CVE-2024-7748 SourceCodester Accounts Manager App delete-account.php sql injection — Accounts Manager AppCWE-89 6.3 Medium2024-08-13
CVE-2024-7686 SourceCodester Kortex Lite Advocate Office Management System register_case.php cross site scripting — Kortex Lite Advocate Office Management SystemCWE-79 3.5 Low2024-08-12
CVE-2024-7685 SourceCodester Kortex Lite Advocate Office Management System adds.php cross site scripting — Kortex Lite Advocate Office Management SystemCWE-79 3.5 Low2024-08-12
CVE-2024-7684 SourceCodester Kortex Lite Advocate Office Management System add_act.php cross site scripting — Kortex Lite Advocate Office Management SystemCWE-79 3.5 Low2024-08-12
CVE-2024-7683 SourceCodester Kortex Lite Advocate Office Management System addcase_stage.php cross site scripting — Kortex Lite Advocate Office Management SystemCWE-79 3.5 Low2024-08-12
CVE-2024-7678 SourceCodester Car Driving School Management System Master.php cross site scripting — Car Driving School Management SystemCWE-79 3.5 Low2024-08-11
CVE-2024-7677 SourceCodester Car Driving School Management System SystemSettings.php update_settings_info cross site scripting — Car Driving School Management SystemCWE-79 3.5 Low2024-08-11
CVE-2024-7676 Sourcecodester Car Driving School Management System Master.php save_package sql injection — Car Driving School Management SystemCWE-89 6.3 Medium2024-08-11
CVE-2024-7669 SourceCodester Car Driving School Management System Master.php delete_enrollment sql injection — Car Driving School Management SystemCWE-89 6.3 Medium2024-08-11
CVE-2024-7668 SourceCodester Car Driving School Management System Master.php delete_package sql injection — Car Driving School Management SystemCWE-89 6.3 Medium2024-08-11
CVE-2024-7667 SourceCodester Car Driving School Management System User.php delete_users sql injection — Car Driving School Management SystemCWE-89 6.3 Medium2024-08-11
CVE-2024-7666 SourceCodester Car Driving School Management System view_package.php sql injection — Car Driving School Management SystemCWE-89 6.3 Medium2024-08-11

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.