Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 535

Browse all 535 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System College Management System Payroll Management System Online Blood Bank Management System Restaurant Management System Content Management System POS Point of Sale System Sports Management System Student Information Management System Fees Management System COVID Tracking System Online Discussion Forum Online Student Enrollment System Open Source Job Portal Inventory Management System Online Cake Ordering System Online Frozen Foods Ordering System Courier Management System Free Hotel Reservation System Vehicle Management System Farm Management System
CVE IDTitleCVSSSeverityPublished
CVE-2026-11514 itsourcecode Hospital Management System addpatient.php sql injection — Hospital Management SystemCWE-89 6.3 Medium2026-06-08
CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection — Hospital Management SystemCWE-89 6.3 Medium2026-06-08
CVE-2026-11512 itsourcecode Hospital Management System billing.php cross site scripting — Hospital Management SystemCWE-79 4.3 Medium2026-06-08
CVE-2026-10811 itsourcecode Fees Management System receipt.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-04
CVE-2026-10810 itsourcecode Fees Management System navbar.php cross site scripting — Fees Management SystemCWE-79 4.3 Medium2026-06-04
CVE-2026-10809 itsourcecode Fees Management System manage_user.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-04
CVE-2026-10808 itsourcecode Fees Management System manage_student.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-04
CVE-2026-10568 itsourcecode Fees Management System manage_payment.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-02
CVE-2026-10302 itsourcecode Fees Management System manage_fee.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10301 itsourcecode Fees Management System index.php cross site scripting — Fees Management SystemCWE-79 4.3 Medium2026-06-01
CVE-2026-10297 itsourcecode Fees Management System manage_course.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10296 itsourcecode Fees Management System ajax.php sql injection — Fees Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10265 itsourcecode Content Management System edit_topic.php sql injection — Content Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10258 itsourcecode Content Management System add_sub_topic.php sql injection — Content Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10257 itsourcecode Content Management System update_ss_img.php sql injection — Content Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10256 itsourcecode Content Management System save_comment.php sql injection — Content Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-10253 itsourcecode Online House Rental System manage_payment.php sql injection — Online House Rental SystemCWE-89 7.3 High2026-06-01
CVE-2026-10252 itsourcecode Online House Rental System manage_tenant.php sql injection — Online House Rental SystemCWE-89 7.3 High2026-06-01
CVE-2026-10251 itsourcecode Online House Rental System ajax.php login sql injection — Online House Rental SystemCWE-89 7.3 High2026-06-01
CVE-2026-10250 itsourcecode Online Blood Bank Management System campsdetails.php sql injection — Online Blood Bank Management SystemCWE-89 7.3 High2026-06-01
CVE-2026-10249 itsourcecode Online Blood Bank Management System viewrequest.php sql injection — Online Blood Bank Management SystemCWE-89 7.3 High2026-06-01
CVE-2026-10242 itsourcecode Content Management System instructions.php sql injection — Content Management SystemCWE-89 6.3 Medium2026-06-01
CVE-2026-9607 itsourcecode Courier Management System parcel_list.php sql injection — Courier Management SystemCWE-89 6.3 Medium2026-05-27
CVE-2026-9606 itsourcecode Courier Management System manage_user.php sql injection — Courier Management SystemCWE-89 7.3 High2026-05-26
CVE-2026-9575 itsourcecode Student Transcript Processing System index.php sql injection — Student Transcript Processing SystemCWE-89 7.3 High2026-05-26
CVE-2026-9574 itsourcecode Student Transcript Processing System trans.php sql injection — Student Transcript Processing SystemCWE-89 7.3 High2026-05-26
CVE-2026-9573 itsourcecode Student Transcript Processing System index.php sql injection — Student Transcript Processing SystemCWE-89 7.3 High2026-05-26
CVE-2026-9528 itsourcecode Electronic Judging System delete_judge.php sql injection — Electronic Judging SystemCWE-89 7.3 High2026-05-26
CVE-2026-9527 itsourcecode Electronic Judging System judges.php cross site scripting — Electronic Judging SystemCWE-79 4.3 Medium2026-05-26
CVE-2026-9526 itsourcecode Electronic Judging System edit_team.php sql injection — Electronic Judging SystemCWE-89 7.3 High2026-05-26

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.