Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2026-5576 SourceCodester/jkev Record Management System Add Employee save_emp.php unrestricted upload — Record Management SystemCWE-434 4.7 Medium2026-04-05
CVE-2026-5575 SourceCodester/jkev Record Management System Login index.php sql injection — Record Management SystemCWE-89 7.3 High2026-04-05
CVE-2026-5531 SourceCodester Student Result Management System HTTP GET Request login_credentials.txt cleartext storage in file — Student Result Management SystemCWE-313 5.3 Medium2026-04-05
CVE-2026-5330 SourceCodester/mayuri_k Best Courier Management System User Delete ajax.php access control — Best Courier Management SystemCWE-284 6.5 Medium2026-04-02
CVE-2026-5326 SourceCodester Leave Application System User Information index.php authorization — Leave Application SystemCWE-639 5.3 Medium2026-04-02
CVE-2026-5325 SourceCodester Simple Customer Relationship Management System Create Ticket create-ticket.php cross site scripting — Simple Customer Relationship Management SystemCWE-79 3.5 Low2026-04-02
CVE-2026-5210 SourceCodester Leave Application System file inclusion — Leave Application SystemCWE-73 7.3 High2026-03-31
CVE-2026-5209 SourceCodester Leave Application System User Management cross site scripting — Leave Application SystemCWE-79 2.4 Low2026-03-31
CVE-2026-5182 SourceCodester Teacher Record System Parameter sql injection — Teacher Record SystemCWE-89 7.3 High2026-03-31
CVE-2026-5181 SourceCodester Simple Doctors Appointment System ajax.php unrestricted upload — Simple Doctors Appointment SystemCWE-434 6.3 Medium2026-03-31
CVE-2026-5180 SourceCodester Simple Doctors Appointment System ajax.php sql injection — Simple Doctors Appointment SystemCWE-89 7.3 High2026-03-31
CVE-2026-5179 SourceCodester Simple Doctors Appointment System login.php sql injection — Simple Doctors Appointment SystemCWE-89 7.3 High2026-03-31
CVE-2026-5126 SourceCodester RSS Feed Parser file_get_contents server-side request forgery — RSS Feed ParserCWE-918 6.3 Medium2026-03-30
CVE-2026-4973 SourceCodester Online Quiz System add-question.php cross site scripting — Online Quiz SystemCWE-79 3.5 Low2026-03-27
CVE-2026-4971 SourceCodester Note Taking App cross-site request forgery — Note Taking AppCWE-352 4.3 Medium2026-03-27
CVE-2026-4968 SourceCodester Diary App diary.php cross-site request forgery — Diary AppCWE-352 4.3 Medium2026-03-27
CVE-2026-4839 SourceCodester Food Ordering System Parameter purchase.php sql injection — Food Ordering SystemCWE-89 7.3 High2026-03-26
CVE-2026-4838 SourceCodester Malawi Online Market display.php sql injection — Malawi Online MarketCWE-89 7.3 High2026-03-26
CVE-2026-4826 SourceCodester Sales and Inventory System HTTP GET Parameter update_stock.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-25
CVE-2026-4825 SourceCodester Sales and Inventory System HTTP GET Parameter update_sales.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-25
CVE-2026-4781 SourceCodester Sales and Inventory System HTTP GET Parameter update_purchase.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4780 SourceCodester Sales and Inventory System HTTP GET Parameter update_out_standing.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4779 SourceCodester Sales and Inventory System HTTP GET Parameter update_customer_details.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4778 SourceCodester Sales and Inventory System HTTP GET Parameter update_category.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4777 SourceCodester Sales and Inventory System POST Parameter view_supplier.php sql injection — Sales and Inventory SystemCWE-89 6.3 Medium2026-03-24
CVE-2026-4625 SourceCodester Online Admission System programmes.php sql injection — Online Admission SystemCWE-89 7.3 High2026-03-24
CVE-2026-4624 SourceCodester Online Library Management System Parameter home.php sql injection — Online Library Management SystemCWE-89 7.3 High2026-03-24
CVE-2026-4617 SourceCodester Patients Waiting Area Queue Management System Patient Check-In api_patient_checkin.php ValidateToken improper authorization — Patients Waiting Area Queue Management SystemCWE-285 7.3 High2026-03-24
CVE-2026-4615 SourceCodester Online Catering Reservation search.php sql injection — Online Catering ReservationCWE-89 7.3 High2026-03-23
CVE-2026-4613 SourceCodester E-Commerce Site products.php sql injection — E-Commerce SiteCWE-89 7.3 High2026-03-23

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.