Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

SourceCodester — Vulnerabilities & Security Advisories 1806

Browse all 1806 CVE security advisories affecting SourceCodester. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SourceCodester operates as a repository for free and premium source code, scripts, and web applications, primarily serving developers seeking ready-made solutions for rapid deployment. This business model inherently exposes users to significant security risks, as the platform hosts thousands of projects with varying levels of code review. Historically, vulnerabilities found in these downloads frequently include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from outdated frameworks or unpatched dependencies. Privilege escalation flaws are also common, allowing attackers to bypass authentication mechanisms. While SourceCodester does not typically manage post-download security patches, the sheer volume of recorded CVEs highlights systemic issues in code quality assurance. Users relying on these resources must perform rigorous independent security audits, as the platform’s primary focus remains distribution rather than comprehensive vulnerability management or remediation support.

Top products by SourceCodester: Best Salon Management System Pharmacy Sales and Inventory System Online Computer and Laptop Store Online Eyewear Shop Best House Rental Management System Pet Grooming Management Software Pizzafy Ecommerce System Online Tours & Travels Management System Kortex Lite Advocate Office Management System Sales and Inventory System Web-based Pharmacy Product Management System Record Management System Clinics Patient Management System Prison Management System Employee Management System Lost and Found Information System Engineers Online Portal Student Result Management System Simple Online Bidding System Employee Task Management System AC Repair and Services System Inventory Management System Food Ordering Management System Online Graduate Tracer System Hotel and Lodge Management System Computer Laboratory Management System Gym Management System Canteen Management System Online Courseware Human Resource Management System
CVE IDTitleCVSSSeverityPublished
CVE-2022-2644 SourceCodester Online Admission System GET Parameter sql injection — Online Admission SystemCWE-89 5.5 Medium2022-08-04
CVE-2022-2643 SourceCodester Online Admission System POST Parameter sql injection — Online Admission SystemCWE-89 6.3 Medium2022-08-04
CVE-2022-2579 SourceCodester Garage Management System createUser.php cross site scripting — Garage Management SystemCWE-79 3.5 Low2022-07-29
CVE-2022-2578 SourceCodester Garage Management System createUser.php access control — Garage Management SystemCWE-284 6.3 Medium2022-07-29
CVE-2022-2577 SourceCodester Garage Management System edituser.php sql injection — Garage Management SystemCWE-89 6.3 Medium2022-07-29
CVE-2022-2492 SourceCodester Library Management System index.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-07-20
CVE-2022-2491 SourceCodester Library Management System lab.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-07-20
CVE-2022-2490 SourceCodester Simple E-Learning System search.php sql injection — Simple E-Learning SystemCWE-89 6.3 Medium2022-07-20
CVE-2022-2489 SourceCodester Simple E-Learning System classRoom.php sql injection — Simple E-Learning SystemCWE-89 6.3 Medium2022-07-20
CVE-2022-2468 SourceCodester Garage Management System editbrand.php sql injection — Garage Management SystemCWE-89 6.3 Medium2022-07-19
CVE-2022-2467 SourceCodester Garage Management System login.php sql injection — Garage Management SystemCWE-89 7.3 High2022-07-19
CVE-2022-2396 SourceCodester Simple e-Learning System claire_blake cross site scripting — Simple e-Learning SystemCWE-79 3.5 Low2022-07-14
CVE-2022-2364 SourceCodester Simple Parking Management System category cross site scripting — Simple Parking Management SystemCWE-79 3.5 Low2022-07-12
CVE-2022-2363 SourceCodester Simple Parking Management System cross site scripting — Simple Parking Management SystemCWE-79 3.5 Low2022-07-12
CVE-2022-2298 SourceCodester Clinics Patient Management System Login Page index.php sql injection — Clinics Patient Management SystemCWE-89 7.3 High2022-07-12
CVE-2022-2297 SourceCodester Clinics Patient Management System unrestricted upload — Clinics Patient Management SystemCWE-434 6.3 Medium2022-07-12
CVE-2022-2293 SourceCodester Simple Sales Management System create cross site scripting — Simple Sales Management SystemCWE-79 3.5 Low2022-07-12
CVE-2022-2292 SourceCodester Hotel Management System Room Edit Page 1 cross site scripting — Hotel Management SystemCWE-79 3.5 Low2022-07-12
CVE-2022-2291 SourceCodester Hotel Management System Search search cross site scripting — Hotel Management SystemCWE-79 4.3 Medium2022-07-12
CVE-2022-2214 SourceCodester Library Management System bookdetails.php sql injection — Library Management SystemCWE-89 6.3 Medium2022-06-27
CVE-2022-2213 SourceCodester Library Management System cross site scripting — Library Management SystemCWE-79 3.5 Low2022-06-27
CVE-2022-2212 SourceCodester Library Management System /card/index.php unrestricted upload — Library Management SystemCWE-434 6.3 Medium2022-06-27
CVE-2022-2087 SourceCodester Bank Management System cross site scripting — Bank Management SystemCWE-79 3.5 Low2022-06-15
CVE-2022-2086 SourceCodester Bank Management System login.php sql injection — Bank Management SystemCWE-89 6.3 Medium2022-06-15
CVE-2022-2020 SourceCodester Prison Management System System Name cross site scripting — Prison Management SystemCWE-79 2.4 Low2022-06-07
CVE-2022-2019 SourceCodester Prison Management System New User Creation improper authorization — Prison Management SystemCWE-285 7.3 High2022-06-07
CVE-2022-2018 SourceCodester Prison Management System Inmate sql injection — Prison Management SystemCWE-89 4.7 Medium2022-06-07
CVE-2022-2017 SourceCodester Prison Management System Visit view_visit.php sql injection — Prison Management SystemCWE-89 4.7 Medium2022-06-07
CVE-2022-1980 SourceCodester Product Show Room Site cross site scripting — Product Show Room SiteCWE-79 2.4 Low2022-06-02
CVE-2022-1979 SourceCodester Product Show Room Site p=contact cross site scripting — Product Show Room SiteCWE-79 3.5 Low2022-06-02

This page lists every published CVE security advisory associated with SourceCodester. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.