Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2022-4279 SourceCodester Human Resource Management System employeeview.php cross site scripting — Human Resource Management SystemCWE-707 3.5 Low2022-12-03
CVE-2022-4252 SourceCodester Canteen Management System categories.php builtin_echo cross site scripting — Canteen Management SystemCWE-707 3.5 Low2022-12-01
CVE-2022-4253 SourceCodester Canteen Management System customer.php builtin_echo cross site scripting — Canteen Management SystemCWE-707 3.5 Low2022-12-01
CVE-2022-4222 SourceCodester Canteen Management System POST Request ajax_invoice.php query sql injection — Canteen Management SystemCWE-707 5.0 Medium2022-11-30
CVE-2022-4228 SourceCodester Book Store Management System information disclosure — Book Store Management SystemCWE-200 5.3 Medium2022-11-30
CVE-2022-4229 SourceCodester Book Store Management System index.php access control — Book Store Management SystemCWE-284 7.3 High2022-11-30
CVE-2022-4232 SourceCodester Event Registration System unrestricted upload — Event Registration SystemCWE-266 4.7 Medium2022-11-30
CVE-2022-4233 SourceCodester Event Registration System cross site scripting — Event Registration SystemCWE-707 2.4 Low2022-11-30
CVE-2022-4234 SourceCodester Canteen Management System brand.php builtin_echo cross site scripting — Canteen Management SystemCWE-707 3.5 Low2022-11-30
CVE-2022-4091 SourceCodester Canteen Management System food.php query cross site scripting — Canteen Management SystemCWE-707 3.5 Low2022-11-25
CVE-2022-3992 SourceCodester Sanitization Management System Banner Image cross site scripting — Sanitization Management SystemCWE-707 2.4 Low2022-11-14
CVE-2022-3942 SourceCodester Sanitization Management System cross site scripting — Sanitization Management SystemCWE-707 4.3 Medium2022-11-11
CVE-2022-3949 Sourcecodester Simple Cashiering System User Account cross site scripting — Simple Cashiering SystemCWE-707 3.5 Low2022-11-11
CVE-2022-3868 SourceCodester Sanitization Management System sql injection — Sanitization Management SystemCWE-707 4.7 Medium2022-11-05
CVE-2022-3774 SourceCodester Train Scheduler App resource injection — Train Scheduler AppCWE-99 5.4 Medium2022-10-31
CVE-2022-3733 SourceCodester Web-Based Student Clearance System edit-admin.php sql injection — Web-Based Student Clearance SystemCWE-707 5.0 Medium2022-10-28
CVE-2022-3714 SourceCodester Online Medicine Ordering System sql injection — Online Medicine Ordering SystemCWE-707 5.0 Medium2022-10-27
CVE-2022-3716 SourceCodester Online Medicine Ordering System cross site scripting — Online Medicine Ordering SystemCWE-707 3.5 Low2022-10-27
CVE-2022-3671 SourceCodester eLearning System manage.php sql injection — eLearning SystemCWE-89 6.3 Medium2022-10-26
CVE-2022-3672 SourceCodester Sanitization Management System SystemSettings.php cross site scripting — Sanitization Management SystemCWE-707 3.5 Low2022-10-26
CVE-2022-3673 SourceCodester Sanitization Management System Master.php cross site scripting — Sanitization Management SystemCWE-707 3.5 Low2022-10-26
CVE-2022-3674 SourceCodester Sanitization Management System missing authentication — Sanitization Management SystemCWE-287 7.3 High2022-10-26
CVE-2022-3579 SourceCodester Cashier Queuing System Login Page login.php sql injection — Cashier Queuing SystemCWE-707 6.3 Medium2022-10-18
CVE-2022-3580 SourceCodester Cashier Queuing System User Creation cross site scripting — Cashier Queuing SystemCWE-707 2.4 Low2022-10-18
CVE-2022-3581 SourceCodester Cashier Queuing System Cashiers Tab cross site scripting — Cashier Queuing SystemCWE-707 2.4 Low2022-10-18
CVE-2022-3582 SourceCodester Simple Cold Storage Management System cross-site request forgery — Simple Cold Storage Management SystemCWE-863 4.3 Medium2022-10-18
CVE-2022-3583 SourceCodester Canteen Management System login.php sql injection — Canteen Management SystemCWE-707 7.3 High2022-10-18
CVE-2022-3584 SourceCodester Canteen Management System edituser.php sql injection — Canteen Management SystemCWE-707 6.3 Medium2022-10-18
CVE-2022-3585 SourceCodester Simple Cold Storage Management System Contact Us cross-site request forgery — Simple Cold Storage Management SystemCWE-863 4.3 Medium2022-10-18
CVE-2022-3587 SourceCodester Simple Cold Storage Management System My Account cross site scripting — Simple Cold Storage Management SystemCWE-707 3.5 Low2022-10-18

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.