Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sourcecodester — Vulnerabilities & Security Advisories 1769

Browse all 1769 CVE security advisories affecting Sourcecodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by Sourcecodester: Best Salon Management System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Online Tours & Travels Management System Pharmacy Sales and Inventory System Pet Grooming Management Software Kortex Lite Advocate Office Management System Pizzafy Ecommerce System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Lost and Found Information System Employee Management System Engineers Online Portal Student Result Management System Employee Task Management System Simple Online Bidding System Online Graduate Tracer System Inventory Management System AC Repair and Services System Food Ordering Management System Hotel and Lodge Management System Computer Laboratory Management System Online Courseware Gym Management System Canteen Management System Patients Waiting Area Queue Management System
CVE IDTitleCVSSSeverityPublished
CVE-2022-2690 SourceCodester Wedding Hall Booking System Booking Form cross site scripting — Wedding Hall Booking SystemCWE-79 3.5 Low2022-08-06
CVE-2022-2689 SourceCodester Wedding Hall Booking System Contact Page cross site scripting — Wedding Hall Booking SystemCWE-79 3.5 Low2022-08-06
CVE-2022-2688 SourceCodester Expense Management System POST Parameter report.php fetch_report_credit sql injection — Expense Management SystemCWE-89 6.3 Medium2022-08-06
CVE-2022-2687 SourceCodester Gym Management System sql injection — Gym Management SystemCWE-89 6.3 Medium2022-08-06
CVE-2022-2685 SourceCodester Interview Management System addQuestion.php cross site scripting — Interview Management SystemCWE-79 3.5 Low2022-08-05
CVE-2022-2684 SourceCodester Apartment Visitor Management System manage-apartment.php cross site scripting — Apartment Visitor Management SystemCWE-79 3.5 Low2022-08-05
CVE-2022-2683 SourceCodester Simple Food Ordering System login.php cross site scripting — Simple Food Ordering SystemCWE-79 3.5 Low2022-08-05
CVE-2022-2682 SourceCodester Alphaware Simple E-Commerce System stockin.php cross site scripting — Alphaware Simple E-Commerce SystemCWE-79 3.5 Low2022-08-05
CVE-2022-2681 SourceCodester Online Student Admission System Student User Page edit-profile.php cross site scripting — Online Student Admission SystemCWE-79 3.5 Low2022-08-05
CVE-2022-2680 SourceCodester Church Management System login.php sql injection — Church Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2679 SourceCodester Interview Management System viewReport.php sql injection — Interview Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2678 SourceCodester Alphaware Simple E-Commerce System Background Management Page admin_feature.php unrestricted upload — Alphaware Simple E-Commerce SystemCWE-434 6.3 Medium2022-08-05
CVE-2022-2677 SourceCodester Apartment Visitor Management System index.php sql injection — Apartment Visitor Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2676 SourceCodester Electronic Medical Records System POST Request sql injection — Electronic Medical Records SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2674 SourceCodester Best Fee Management System admin_class.php login sql injection — Best Fee Management SystemCWE-89 7.3 High2022-08-05
CVE-2022-2672 SourceCodester Garage Management System createUser.php sql injection — Garage Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2671 SourceCodester Garage Management System removeUser.php sql injection — Garage Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2667 SourceCodester Loan Management System delete_lplan.php sql injection — Loan Management SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2665 SourceCodester Simple E-Learning System classroom.php sql injection — Simple E-Learning SystemCWE-89 6.3 Medium2022-08-05
CVE-2022-2656 SourceCodester Multi Language Hotel Management Software sql injection — Multi Language Hotel Management SoftwareCWE-89 6.3 Medium2022-08-04
CVE-2022-2648 SourceCodester Multi Language Hotel Management Software sql injection — Multi Language Hotel Management SoftwareCWE-89 6.3 Medium2022-08-04
CVE-2022-2646 SourceCodester Online Admission System index.php cross site scripting — Online Admission SystemCWE-79 3.5 Low2022-08-04
CVE-2022-2645 SourceCodester Garage Management System edituser.php cross site scripting — Garage Management SystemCWE-79 3.5 Low2022-08-04
CVE-2022-2644 SourceCodester Online Admission System GET Parameter sql injection — Online Admission SystemCWE-89 5.5 Medium2022-08-04
CVE-2022-2643 SourceCodester Online Admission System POST Parameter sql injection — Online Admission SystemCWE-89 6.3 Medium2022-08-04
CVE-2022-2579 SourceCodester Garage Management System createUser.php cross site scripting — Garage Management SystemCWE-79 3.5 Low2022-07-29
CVE-2022-2578 SourceCodester Garage Management System createUser.php access control — Garage Management SystemCWE-284 6.3 Medium2022-07-29
CVE-2022-2577 SourceCodester Garage Management System edituser.php sql injection — Garage Management SystemCWE-89 6.3 Medium2022-07-29
CVE-2022-2492 SourceCodester Library Management System index.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-07-20
CVE-2022-2491 SourceCodester Library Management System lab.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-07-20

This page lists every published CVE security advisory associated with Sourcecodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.