11 matches found
CVE-2024-3414
A vulnerability was found in SourceCodester Human Resource Information System 1.0 and classified as problematic. This issue affects some unknown processing of the file SuperadminDashboard/process/addcorporateprocess.php. The manipulation of the argument corporatename leads to cross site scripting...
CVE-2024-3413
A vulnerability has been found in SourceCodester Human Resource Information System 1.0 and classified as critical. This vulnerability affects unknown code of the file initialize/loginprocess.php. The manipulation of the argument hremail/hrpassword leads to sql injection. The attack can be initiat...
SQL Injection Vulnerability in Human Resource Information Management System of Beijing Hongjing Century Software Company Limited (CNVD-2024-43261)
Beijing Hongjing Century Software Co. A SQL injection vulnerability exists in the human resources information management system of Beijing Hongjing Century Software Co. Ltd, which can be exploited by attackers to obtain sensitive information from the database...
CVE-2024-3415
CVE-2024-3415 concerns SourceCodester Human Resource Information System 1.0. vulnerability in the file Superadmin_Dashboard/process/addbranches_process.php where manipulating the parameter branches_name enables cross-site scripting. The issue is exploitable remotely (no user interaction required)...
CVE-2024-3414 SourceCodester Human Resource Information System addcorporate_process.php cross site scripting
A vulnerability was found in SourceCodester Human Resource Information System 1.0 and classified as problematic. This issue affects some unknown processing of the file SuperadminDashboard/process/addcorporateprocess.php. The manipulation of the argument corporatename leads to cross site scripting...
CVE-2024-3414 SourceCodester Human Resource Information System addcorporate_process.php cross site scripting
A vulnerability was found in SourceCodester Human Resource Information System 1.0 and classified as problematic. This issue affects some unknown processing of the file SuperadminDashboard/process/addcorporateprocess.php. The manipulation of the argument corporatename leads to cross site scripting...
CVE-2024-3413 SourceCodester Human Resource Information System login_process.php sql injection
A vulnerability has been found in SourceCodester Human Resource Information System 1.0 and classified as critical. This vulnerability affects unknown code of the file initialize/loginprocess.php. The manipulation of the argument hremail/hrpassword leads to sql injection. The attack can be initiat...
CVE-2024-3413
CVE-2024-3413 affects SourceCodester Human Resource Information System v1.0, where an SQL injection exists in the file initialize/login_process.php, caused by manipulating the arguments hr_email and hr_password. The vulnerability is exploitable remotely and the exploit has been disclosed publicly...
Human Resource Information System 安全漏洞
Human Resource Information System is a human resource information system. A security vulnerability exists in version 1.0 of the SourceCodester Human Resource Information System, which results from an SQL injection vulnerability in the hremail/hrpassword parameters of the initialize/loginprocess.p...
Human Resource Information System 跨站脚本漏洞
Human Resource Information System is a human resource information system. A cross-site scripting vulnerability exists in SourceCodester Human Resource Information System version 1.0, which originates from a cross-site scripting vulnerability in the corporate name parameter of the...
Human Resource Information System 0.1 Remote Code Execution
Exploit Title: Human Resource Information System 0.1 - Remote Code Execution Unauthenticated Date: 04-05-2021 Exploit Author: Reza Afsahi Vendor Homepage: https://www.sourcecodester.com Software Link:...