4 matches found
CVE-2025-44185
SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery CSRF in /admin/changepass.php via the password parameter...
CVE-2025-44185
SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery CSRF in /admin/changepass.php via the password parameter...
CVE-2025-44185
creationtimestamp| type| source ---|---|--- 2025-05-15 14:35:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16519...
CVE-2025-44185
CVE-2025-44185 : In SourceCodester Best Employee Management System V1.0, a CSRF flaw exists in the admin password change action (/admin/change_pass.php) via the password parameter. The vulnerability could allow an attacker to trigger an unauthorized password change on behalf of an authenticated a...