Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 503

Browse all 503 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System Payroll Management System College Management System Student Information Management System COVID Tracking System Restaurant Management System Sports Management System POS Point of Sale System Online Student Enrollment System Online Blood Bank Management System Online Discussion Forum Online Cake Ordering System Free Hotel Reservation System Vehicle Management System Open Source Job Portal Online Frozen Foods Ordering System Inventory Management System Document Management System Farm Management System Web-Based Internet Laboratory Management System Online Enrollment System
CVE IDTitleCVSSSeverityPublished
CVE-2025-8968 itsourcecode Online Tour and Travel Management System disapprove_user.php sql injection — Online Tour and Travel Management SystemCWE-89 7.3 High2025-08-14
CVE-2025-8967 itsourcecode Online Tour and Travel Management System packages.php sql injection — Online Tour and Travel Management SystemCWE-89 7.3 High2025-08-14
CVE-2025-8966 itsourcecode Online Tour and Travel Management System tax.php sql injection — Online Tour and Travel Management SystemCWE-89 7.3 High2025-08-14
CVE-2025-8925 itsourcecode Sports Management System match.php sql injection — Sports Management SystemCWE-89 7.3 High2025-08-13
CVE-2025-8172 itsourcecode Employee Management System index.php sql injection — Employee Management SystemCWE-89 6.3 Medium2025-07-25
CVE-2025-8135 itsourcecode Insurance Management System updateAgent.php sql injection — Insurance Management SystemCWE-89 6.3 Medium2025-07-25
CVE-2025-7905 itsourcecode Insurance Management System insertPayment.php sql injection — Insurance Management SystemCWE-89 6.3 Medium2025-07-20
CVE-2025-7904 itsourcecode Insurance Management System insertNominee.php sql injection — Insurance Management SystemCWE-89 6.3 Medium2025-07-20
CVE-2025-7212 itsourcecode Insurance Management System insertAgent.php sql injection — Insurance Management SystemCWE-89 6.3 Medium2025-07-09
CVE-2025-7193 itsourcecode Agri-Trading Online Shopping System suppliercontroller.php sql injection — Agri-Trading Online Shopping SystemCWE-89 7.3 High2025-07-08
CVE-2025-7182 itsourcecode Student Transcript Processing System edit.php cross site scripting — Student Transcript Processing SystemCWE-79 4.3 Medium2025-07-08
CVE-2025-7127 itsourcecode Employee Management System changepassword.php sql injection — Employee Management SystemCWE-89 4.7 Medium2025-07-07
CVE-2025-7126 itsourcecode Employee Management System adminprofile.php sql injection — Employee Management SystemCWE-89 6.3 Medium2025-07-07
CVE-2025-7125 itsourcecode Employee Management System editempeducation.php sql injection — Employee Management SystemCWE-89 6.3 Medium2025-07-07
CVE-2025-6610 itsourcecode Employee Management System editempprofile.php sql injection — Employee Management SystemCWE-89 4.7 Medium2025-06-25
CVE-2025-6489 itsourcecode Agri-Trading Online Shopping System transactionsave.php sql injection — Agri-Trading Online Shopping SystemCWE-89 7.3 High2025-06-22
CVE-2025-6351 itsourcecode Employee Record Management System editprofile.php sql injection — Employee Record Management SystemCWE-89 6.3 Medium2025-06-20
CVE-2025-4886 itsourcecode Sales and Inventory System product_update.php sql injection — Sales and Inventory SystemCWE-89 7.3 High2025-05-18
CVE-2025-4885 itsourcecode Sales and Inventory System product_add.php sql injection — Sales and Inventory SystemCWE-89 7.3 High2025-05-18
CVE-2025-4884 itsourcecode Restaurant Management System assign_save.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4882 itsourcecode Restaurant Management System team_update.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4881 itsourcecode Restaurant Management System user_save.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4870 itsourcecode Restaurant Management System menu_save.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4869 itsourcecode Restaurant Management System member_update.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4865 itsourcecode Restaurant Management System member_save.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4864 itsourcecode Restaurant Management System finished.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-18
CVE-2025-4726 itsourcecode Placement Management System view_student.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15
CVE-2025-4725 itsourcecode Placement Management System view_drive.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15
CVE-2025-4724 itsourcecode Placement Management System student_profile.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15
CVE-2025-4723 itsourcecode Placement Management System all_student.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.