Sourcecodester

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-6160 1Sourcecodester 1Downloading Client Database Management System Apr 29, 2026 Jun 17, 2025 5.5 MEDIUM· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /user_customer_create_order.php. The manip...Show more A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /user_customer_create_order.php. The manipulation of the argument user_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-34231 1Sourcecodester 1Laboratory Management System Apr 22, 2025 May 14, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Short Name parameter...Show more A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Short Name parameter.Show less
CVE-2024-34230 1Sourcecodester 1Laboratory Management System Apr 22, 2025 May 14, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Information paramete...Show more A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Information parameter.Show less
CVE-2024-33305 1Sourcecodester 1Laboratory Management System Apr 22, 2025 May 2, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "Middle Name" parameter in Create User.
CVE-2024-33307 1Sourcecodester 1Laboratory Management System Apr 22, 2025 May 1, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" parameter in Create User.
CVE-2024-33306 1Sourcecodester 1Laboratory Management System Apr 22, 2025 May 1, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" parameter in Create User.
CVE-2021-41728 1Sourcecodester 1News247 Cms Nov 21, 2024 Oct 28, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross Site Scripting (XSS) vulnerability exists in Sourcecodester News247 CMS 1.0 via the search function in articles.
CVE-2020-24932 2Razormist Sourcecodester 2Complaint Management System Complaint Management System Mar 6, 2026 Oct 27, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An SQL Injection vulnerability exists in Sourcecodester Complaint Management System 1.0 via the cid parameter in complaint-details.php.
CVE-2019-18417 1Sourcecodester 1Restaurant Management System Jun 17, 2026 Oct 24, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-sup...Show more Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files.Show less
CVE-2019-18414 1Sourcecodester 1Restaurant Management System Jun 17, 2026 Oct 24, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator...Show more Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code or adding a staff entry via a crafted HTML page.Show less