EUVD-2025-201605

🗓️ 07 Dec 2025 15:30:26Reported by EUVDType

Vulnerability in Employee Profile Management System 1.0 enables remote XSS via view_personnel.php by manipulating per_address fields.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-14194	7 Dec 202517:15	–	circl
CNNVD	Code-Projects Employee Profile Management System 代码注入漏洞	7 Dec 202500:00	–	cnnvd
CNVD	Employee Profile Management System /view_personnel.php File Cross-Site Scripting Vulnerability	10 Dec 202500:00	–	cnvd
CVE	CVE-2025-14194	7 Dec 202514:32	–	cve
Cvelist	CVE-2025-14194 code-projects Employee Profile Management System view_personnel.php cross site scripting	7 Dec 202514:32	–	cvelist
NVD	CVE-2025-14194	7 Dec 202515:15	–	nvd
Positive Technologies	PT-2025-49407	7 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-14194	8 Dec 202515:17	–	redhatcve
Vulnrichment	CVE-2025-14194 code-projects Employee Profile Management System view_personnel.php cross site scripting	7 Dec 202514:32	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "40992124-4dec-3420-8e3a-73b87ad28537",
        "vendor": {
          "name": "code-projects"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "003336e7-b49c-37f4-b67e-7a0376c653c5",
        "product": {
          "name": "Employee Profile Management System"
        },
        "product_version": "1.0"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/shenxianyuguitian/employee-management-XSS
code-projects	www.code-projects.org/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-14194

07 Dec 2025 15:30Current

5.2Medium risk

Vulners AI Score5.2

CVSS 45.1

CVSS 3.13.5

CVSS 24

CVSS 33.5

EPSS0.00027