Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2023-0945 SourceCodester Best POS Management System cross site scripting — Best POS Management SystemCWE-79 3.5 Low2023-02-21
CVE-2023-0943 SourceCodester Best POS Management System Image save_settings unrestricted upload — Best POS Management SystemCWE-434 4.7 Medium2023-02-21
CVE-2023-0938 SourceCodester Music Gallery Site GET Request music_list.php sql injection — Music Gallery SiteCWE-89 6.3 Medium2023-02-21
CVE-2023-0917 SourceCodester Simple Customer Relationship Management System login.php sql injection — Simple Customer Relationship Management SystemCWE-89 7.3 High2023-02-19
CVE-2023-0916 SourceCodester Auto Dealer Management System Users.php access control — Auto Dealer Management SystemCWE-284 6.3 Medium2023-02-19
CVE-2023-0915 SourceCodester Auto Dealer Management System sql injection — Auto Dealer Management SystemCWE-89 6.3 Medium2023-02-19
CVE-2023-0913 SourceCodester Auto Dealer Management System sql injection — Auto Dealer Management SystemCWE-89 4.7 Medium2023-02-18
CVE-2023-0912 SourceCodester Auto Dealer Management System sql injection — Auto Dealer Management SystemCWE-89 4.7 Medium2023-02-18
CVE-2023-0910 SourceCodester Online Pizza Ordering System GET Parameter view_prod.php sql injection — Online Pizza Ordering SystemCWE-89 6.3 Medium2023-02-18
CVE-2023-0906 SourceCodester Online Pizza Ordering System POST Parameter ajax.php delete_category missing authentication — Online Pizza Ordering SystemCWE-306 7.3 High2023-02-18
CVE-2023-0905 SourceCodester Employee Task Management System changePasswordForEmployee.php improper authentication — Employee Task Management SystemCWE-287 7.3 High2023-02-18
CVE-2023-0904 SourceCodester Employee Task Management System task-details.php sql injection — Employee Task Management SystemCWE-89 6.3 Medium2023-02-18
CVE-2023-0903 SourceCodester Employee Task Management System edit-task.php sql injection — Employee Task Management SystemCWE-89 5.0 Medium2023-02-18
CVE-2023-0902 SourceCodester Simple Food Ordering System process_order.php cross site scripting — Simple Food Ordering SystemCWE-79 3.5 Low2023-02-18
CVE-2023-0883 SourceCodester Online Pizza Ordering System index.php sql injection — Online Pizza Ordering SystemCWE-89 6.3 Medium2023-02-17
CVE-2023-0785 SourceCodester Best Online News Portal check_availability.php information exposure — Best Online News PortalCWE-202 3.7 Low2023-02-12
CVE-2023-0784 SourceCodester Best Online News Portal Login Page sql injection — Best Online News PortalCWE-89 7.3 High2023-02-12
CVE-2023-0781 SourceCodester Canteen Management System removeOrder.php query sql injection — Canteen Management SystemCWE-89 6.3 Medium2023-02-11
CVE-2023-0774 SourceCodester Medical Certificate Generator App action.php sql injection — Medical Certificate Generator AppCWE-89 7.3 High2023-02-10
CVE-2023-0732 SourceCodester Online Eyewear Shop POST Request Users.php registration cross site scripting — Online Eyewear ShopCWE-79 3.5 Low2023-02-07
CVE-2023-0707 SourceCodester Medical Certificate Generator App function.php delete_record sql injection — Medical Certificate Generator AppCWE-89 5.5 Medium2023-02-07
CVE-2023-0706 SourceCodester Medical Certificate Generator App manage_record.php sql injection — Medical Certificate Generator AppCWE-89 6.3 Medium2023-02-07
CVE-2023-0686 SourceCodester Online Eyewear Shop HTTP POST Request update_cart sql injection — Online Eyewear ShopCWE-89 5.0 Medium2023-02-06
CVE-2023-0679 SourceCodester Canteen Management System removeUser.php sql injection — Canteen Management SystemCWE-89 5.0 Medium2023-02-06
CVE-2023-0673 SourceCodester Online Eyewear Shop sql injection — Online Eyewear ShopCWE-89 5.0 Medium2023-02-04
CVE-2023-0571 SourceCodester Canteen Management System Add Customer createcustomer.php cross site scripting — Canteen Management SystemCWE-79 3.5 Low2023-01-29
CVE-2023-0570 SourceCodester Online Tours & Travels Management System payment_operation.php sql injection — Online Tours & Travels Management SystemCWE-89 6.3 Medium2023-01-29
CVE-2023-0561 SourceCodester Online Tours & Travels Management System s.php sql injection — Online Tours & Travels Management SystemCWE-89 6.3 Medium2023-01-28
CVE-2023-0560 SourceCodester Online Tours & Travels Management System practice_pdf.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-28
CVE-2023-0534 SourceCodester Online Tours & Travels Management System expense_report.php sql injection — Online Tours & Travels Management SystemCWE-89 4.7 Medium2023-01-27

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.