Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 503

Browse all 503 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System Payroll Management System College Management System Student Information Management System COVID Tracking System Restaurant Management System Sports Management System POS Point of Sale System Online Student Enrollment System Online Blood Bank Management System Online Discussion Forum Online Cake Ordering System Free Hotel Reservation System Vehicle Management System Open Source Job Portal Online Frozen Foods Ordering System Inventory Management System Document Management System Farm Management System Web-Based Internet Laboratory Management System Online Enrollment System
CVE IDTitleCVSSSeverityPublished
CVE-2025-14584 itsourcecode COVID Tracking System Admin Login login.php sql injection — COVID Tracking SystemCWE-89 7.3 High2025-12-12
CVE-2025-14578 itsourcecode Student Management System update_account.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-12
CVE-2025-14337 itsourcecode Student Management System new_grade.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-09
CVE-2025-14336 itsourcecode Student Management System promote.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-09
CVE-2025-14335 itsourcecode Student Management System new_school_year.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-09
CVE-2025-14334 itsourcecode Student Management System new_adviser.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-09
CVE-2025-14258 itsourcecode Student Management System newsubject.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-08
CVE-2025-14257 itsourcecode Student Management System newrecord.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-08
CVE-2025-14256 itsourcecode Student Management System newcurriculm.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-08
CVE-2025-14226 itsourcecode Student Management System edit_user.php sql injection — Student Management SystemCWE-89 7.3 High2025-12-08
CVE-2025-14214 itsourcecode Student Information System section_edit1.php sql injection — Student Information SystemCWE-89 6.3 Medium2025-12-08
CVE-2025-13585 itsourcecode COVID Tracking System login.php sql injection — COVID Tracking SystemCWE-89 7.3 High2025-11-24
CVE-2025-13581 itsourcecode Student Information System schedule_edit1.php sql injection — Student Information SystemCWE-89 6.3 Medium2025-11-24
CVE-2025-13570 itsourcecode COVID Tracking System page sql injection — COVID Tracking SystemCWE-89 6.3 Medium2025-11-23
CVE-2025-13569 itsourcecode COVID Tracking System page sql injection — COVID Tracking SystemCWE-89 6.3 Medium2025-11-23
CVE-2025-13568 itsourcecode COVID Tracking System page sql injection — COVID Tracking SystemCWE-89 6.3 Medium2025-11-23
CVE-2025-13567 itsourcecode COVID Tracking System page sql injection — COVID Tracking SystemCWE-89 6.3 Medium2025-11-23
CVE-2025-13485 itsourcecode Online File Management System ajax.php sql injection — Online File Management SystemCWE-89 7.3 High2025-11-21
CVE-2025-13421 itsourcecode Human Resource Management System NoticeStore.php sql injection — Human Resource Management SystemCWE-89 7.3 High2025-11-19
CVE-2025-13420 itsourcecode Human Resource Management System EventStore.php sql injection — Human Resource Management SystemCWE-89 7.3 High2025-11-19
CVE-2025-13325 itsourcecode Student Information System enrollment_edit1.php sql injection — Student Information SystemCWE-89 6.3 Medium2025-11-18
CVE-2025-13301 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management SystemCWE-89 7.3 High2025-11-17
CVE-2025-13300 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management SystemCWE-89 7.3 High2025-11-17
CVE-2025-13299 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management SystemCWE-89 7.3 High2025-11-17
CVE-2025-13298 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management SystemCWE-89 7.3 High2025-11-17
CVE-2025-13297 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management SystemCWE-89 7.3 High2025-11-17
CVE-2025-13287 itsourcecode Online Voting System index.php sql injection — Online Voting SystemCWE-89 6.3 Medium2025-11-17
CVE-2025-13286 itsourcecode Online Voting System ajax.php sql injection — Online Voting SystemCWE-89 6.3 Medium2025-11-17
CVE-2025-13285 itsourcecode Online Voting System login.php sql injection — Online Voting SystemCWE-89 7.3 High2025-11-17
CVE-2025-13257 itsourcecode Inventory Management System index.php sql injection — Inventory Management SystemCWE-89 7.3 High2025-11-17

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.