Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

itsourcecode — Vulnerabilities & Security Advisories 503

Browse all 503 CVE security advisories affecting itsourcecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ItsSourceCode operates as a repository for pre-built source code and software projects, primarily targeting students and developers seeking ready-made solutions for academic or commercial applications. This business model inherently distributes complex, often unvetted codebases that frequently contain significant security flaws. Historical analysis reveals a high prevalence of critical vulnerability classes, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, stemming from inadequate input validation and insecure default configurations. The platform’s lack of rigorous security auditing allows these defects to persist, creating a widespread attack surface for downstream users. With over 503 CVEs currently recorded, the site serves as a notable vector for exploiting known weaknesses in popular frameworks. Major incidents involve the distribution of compromised templates that facilitate unauthorized access and data exfiltration, highlighting the risks associated with sourcing unverified software components from third-party aggregators without proper security review.

Top products by itsourcecode: Tailoring Management System Apartment Management System Student Management System Online Tour and Travel Management System Society Management System Gym Management System University Management System Placement Management System School Management System Construction Management System Payroll Management System College Management System Student Information Management System COVID Tracking System Restaurant Management System Sports Management System POS Point of Sale System Online Student Enrollment System Online Blood Bank Management System Online Discussion Forum Online Cake Ordering System Free Hotel Reservation System Vehicle Management System Open Source Job Portal Online Frozen Foods Ordering System Inventory Management System Document Management System Farm Management System Web-Based Internet Laboratory Management System Online Enrollment System
CVE IDTitleCVSSSeverityPublished
CVE-2025-4722 itsourcecode Placement Management System edit_profile.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15
CVE-2025-4721 itsourcecode Placement Management System drive.php sql injection — Placement Management SystemCWE-89 7.3 High2025-05-15
CVE-2025-4488 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4487 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4486 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4485 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4484 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4483 itsourcecode Gym Management System view_pdetails.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4466 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4465 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4464 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4463 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-09
CVE-2025-4363 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4362 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4360 itsourcecode Gym Management System view_member.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4359 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4311 itsourcecode Content Management System update_main_topic_img.php sql injection — Content Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4310 itsourcecode Content Management System add_topic.php unrestricted upload — Content Management SystemCWE-434 4.7 Medium2025-05-06
CVE-2025-4301 itsourcecode Content Management System search-notice.php sql injection — Content Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4300 itsourcecode Content Management System search_list.php sql injection — Content Management SystemCWE-89 7.3 High2025-05-06
CVE-2025-4195 itsourcecode Gym Management System ajax.php sql injection — Gym Management SystemCWE-89 7.3 High2025-05-02
CVE-2025-4193 itsourcecode Restaurant Management System category_update.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-02
CVE-2025-4192 itsourcecode Restaurant Management System category_save.php sql injection — Restaurant Management SystemCWE-89 7.3 High2025-05-02
CVE-2025-4025 itsourcecode Placement Management System registration.php sql injection — Placement Management SystemCWE-89 7.3 High2025-04-28
CVE-2025-4024 itsourcecode Placement Management System add_drive.php sql injection — Placement Management SystemCWE-89 7.3 High2025-04-28
CVE-2025-4023 itsourcecode Placement Management System add_company.php sql injection — Placement Management SystemCWE-89 7.3 High2025-04-28
CVE-2025-3245 itsourcecode Library Management System Forgot.java search sql injection — Library Management SystemCWE-89 6.3 Medium2025-04-04
CVE-2025-3195 itsourcecode Online Blood Bank Management System bbms.php sql injection — Online Blood Bank Management SystemCWE-89 7.3 High2025-04-04
CVE-2025-0950 itsourcecode Tailoring Management System staffview.php sql injection — Tailoring Management SystemCWE-89 6.3 Medium2025-02-01
CVE-2025-0949 itsourcecode Tailoring Management System partview.php sql injection — Tailoring Management SystemCWE-89 6.3 Medium2025-02-01

This page lists every published CVE security advisory associated with itsourcecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.