Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 503

Browse all 503 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System Payroll Management System College Management System Student Information Management System COVID Tracking System Restaurant Management System Sports Management System POS Point of Sale System Online Student Enrollment System Online Blood Bank Management System Online Discussion Forum Online Cake Ordering System Free Hotel Reservation System Vehicle Management System Open Source Job Portal Online Frozen Foods Ordering System Inventory Management System Document Management System Farm Management System Web-Based Internet Laboratory Management System Online Enrollment System
CVE IDTitleCVSSSeverityPublished
CVE-2026-3740 itsourcecode University Management System admin_search_student.php sql injection — University Management SystemCWE-89 7.3 High2026-03-08
CVE-2026-3730 itsourcecode Free Hotel Reservation System index.php sql injection — Free Hotel Reservation SystemCWE-89 7.3 High2026-03-08
CVE-2026-3487 itsourcecode College Management System class-result.php sql injection — College Management SystemCWE-89 4.7 Medium2026-03-03
CVE-2026-3486 itsourcecode College Management System student-fee.php sql injection — College Management SystemCWE-89 4.7 Medium2026-03-03
CVE-2026-3413 itsourcecode University Management System admin_single_student.php sql injection — University Management SystemCWE-89 7.3 High2026-03-02
CVE-2026-3412 itsourcecode University Management System att_single_view.php cross site scripting — University Management SystemCWE-79 4.3 Medium2026-03-02
CVE-2026-3411 itsourcecode University Management System admin_single_student_update.php sql injection — University Management SystemCWE-89 7.3 High2026-03-02
CVE-2026-3410 itsourcecode Society Management System check_studid.php sql injection — Society Management SystemCWE-89 7.3 High2026-03-02
CVE-2026-3261 itsourcecode School Management System Setting index.php sql injection — School Management SystemCWE-89 7.3 High2026-02-26
CVE-2026-3164 itsourcecode News Portal Project contactus.php sql injection — News Portal ProjectCWE-89 7.3 High2026-02-25
CVE-2026-3153 itsourcecode Document Management System register.php sql injection — Document Management SystemCWE-89 7.3 High2026-02-25
CVE-2026-3152 itsourcecode College Management System teacher-salary.php sql injection — College Management SystemCWE-89 7.3 High2026-02-25
CVE-2026-3151 itsourcecode College Management System login.php sql injection — College Management SystemCWE-89 7.3 High2026-02-25
CVE-2026-3150 itsourcecode College Management System display-teacher.php sql injection — College Management SystemCWE-89 6.3 Medium2026-02-25
CVE-2026-3149 itsourcecode College Management System asign-single-student-subjects.php sql injection — College Management SystemCWE-89 6.3 Medium2026-02-25
CVE-2026-3135 itsourcecode News Portal Project add-category.php sql injection — News Portal ProjectCWE-89 7.3 High2026-02-25
CVE-2026-3134 itsourcecode News Portal Project edit-category.php sql injection — News Portal ProjectCWE-89 7.3 High2026-02-24
CVE-2026-3133 itsourcecode Document Management System Login loging.php sql injection — Document Management SystemCWE-89 7.3 High2026-02-24
CVE-2026-3069 itsourcecode Document Management System edtlbls.php sql injection — Document Management SystemCWE-89 7.3 High2026-02-24
CVE-2026-3068 itsourcecode Document Management System deluser.php sql injection — Document Management SystemCWE-89 7.3 High2026-02-24
CVE-2026-3046 itsourcecode E-Logbook with Health Monitoring System for COVID-19 check_profile_old.php sql injection — E-Logbook with Health Monitoring System for COVID-19CWE-89 7.3 High2026-02-24
CVE-2026-3043 itsourcecode Event Management System navbar.php cross site scripting — Event Management SystemCWE-79 4.3 Medium2026-02-23
CVE-2026-3042 itsourcecode Event Management System index.php sql injection — Event Management SystemCWE-89 7.3 High2026-02-23
CVE-2026-2939 itsourcecode Student Management System Add Student add_student cross site scripting — Student Management SystemCWE-79 2.4 Low2026-02-22
CVE-2026-2867 itsourcecode Vehicle Management System billaction.php sql injection — Vehicle Management SystemCWE-89 7.3 High2026-02-21
CVE-2026-2865 itsourcecode Agri-Trading Online Shopping System HTTP POST Request productcontroller.php sql injection — Agri-Trading Online Shopping SystemCWE-89 7.3 High2026-02-21
CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection — Event Management SystemCWE-89 7.3 High2026-02-19
CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection — Event Management SystemCWE-89 7.3 High2026-02-19
CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection — Event Management SystemCWE-89 7.3 High2026-02-19
CVE-2026-2225 itsourcecode News Portal Project Administrator Login index.php sql injection — News Portal ProjectCWE-89 7.3 High2026-02-09

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.