Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 503

Browse all 503 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System Payroll Management System College Management System Student Information Management System COVID Tracking System Restaurant Management System Sports Management System POS Point of Sale System Online Student Enrollment System Online Blood Bank Management System Online Discussion Forum Online Cake Ordering System Free Hotel Reservation System Vehicle Management System Open Source Job Portal Online Frozen Foods Ordering System Inventory Management System Document Management System Farm Management System Web-Based Internet Laboratory Management System Online Enrollment System
CVE IDTitleCVSSSeverityPublished
CVE-2026-7822 itsourcecode Courier Management System print_pdets.php sql injection — Courier Management SystemCWE-89 6.3 Medium2026-05-05
CVE-2026-7612 itsourcecode Courier Management System edit_user.php sql injection — Courier Management SystemCWE-89 4.7 Medium2026-05-02
CVE-2026-7592 itsourcecode Courier Management System edit_staff.php sql injection — Courier Management SystemCWE-89 7.3 High2026-05-01
CVE-2026-7555 itsourcecode Electronic Judging System login.php sql injection — Electronic Judging SystemCWE-89 7.3 High2026-05-01
CVE-2026-7077 itsourcecode Courier Management System edit_parcel.php sql injection — Courier Management SystemCWE-89 7.3 High2026-04-27
CVE-2026-7076 itsourcecode Courier Management System edit_branch.php sql injection — Courier Management SystemCWE-89 7.3 High2026-04-27
CVE-2026-7075 itsourcecode Construction Management System locations.php sql injection — Construction Management SystemCWE-89 7.3 High2026-04-27
CVE-2026-7074 itsourcecode Construction Management System execute1.php sql injection — Construction Management SystemCWE-89 7.3 High2026-04-27
CVE-2026-7073 itsourcecode Construction Management System execute.php sql injection — Construction Management SystemCWE-89 7.3 High2026-04-27
CVE-2026-6191 itsourcecode Construction Management System equipments.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-13
CVE-2026-6190 itsourcecode Construction Management System employees.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-13
CVE-2026-6030 itsourcecode Construction Management System del1.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-10
CVE-2026-6007 itsourcecode Construction Management System del.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-10
CVE-2026-5823 itsourcecode Construction Management System borrowed_tool_report.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-08
CVE-2026-5719 itsourcecode Construction Management System borrowedtool.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-07
CVE-2026-5681 itsourcecode sanitize or validate this input Parameter borrowedequip.php sql injection — sanitize or validate this inputCWE-89 6.3 Medium2026-04-06
CVE-2026-5675 itsourcecode Construction Management System Parameter borrowed_tool.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-06
CVE-2026-5660 itsourcecode Construction Management System Parameter borrowed_equip.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-06
CVE-2026-5620 itsourcecode Construction Management System Parameter borrowed_equip_report.php sql injection — Construction Management SystemCWE-89 6.3 Medium2026-04-06
CVE-2026-5553 itsourcecode Online Cellphone System Parameter available.php sql injection — Online Cellphone SystemCWE-89 6.3 Medium2026-04-05
CVE-2026-5551 itsourcecode Free Hotel Reservation System Parameter login.php sql injection — Free Hotel Reservation SystemCWE-89 7.3 High2026-04-05
CVE-2026-5534 itsourcecode Online Enrollment System Parameter index.php sql injection — Online Enrollment SystemCWE-89 7.3 High2026-04-05
CVE-2026-5334 itsourcecode Online Enrollment System Parameter index.php sql injection — Online Enrollment SystemCWE-89 7.3 High2026-04-02
CVE-2026-5319 itsourcecode Payroll Management System navbar.php cross site scripting — Payroll Management SystemCWE-79 4.3 Medium2026-04-02
CVE-2026-5238 itsourcecode Payroll Management System Parameter view_employee.php sql injection — Payroll Management SystemCWE-89 7.3 High2026-03-31
CVE-2026-5237 itsourcecode Payroll Management System Parameter manage_user.php sql injection — Payroll Management SystemCWE-89 7.3 High2026-03-31
CVE-2026-4966 itsourcecode Free Hotel Reservation System index.php sql injection — Free Hotel Reservation SystemCWE-89 6.3 Medium2026-03-27
CVE-2026-4877 itsourcecode Payroll Management System index.php cross site scripting — Payroll Management SystemCWE-79 4.3 Medium2026-03-26
CVE-2026-4876 itsourcecode Free Hotel Reservation System index.php sql injection — Free Hotel Reservation SystemCWE-89 6.3 Medium2026-03-26
CVE-2026-4875 itsourcecode Free Hotel Reservation System index.php unrestricted upload — Free Hotel Reservation SystemCWE-434 4.7 Medium2026-03-26

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.