54 matches found
CVE-2025-8501 code-projects Human Resource Integrated System action.php cross site scripting
A vulnerability classified as problematic has been found in code-projects Human Resource Integrated System 1.0. Affected is an unknown function of the file /insert-and-view/action.php. The manipulation of the argument content leads to cross site scripting. It is possible to launch the attack...
CVE-2025-8501 code-projects Human Resource Integrated System action.php cross site scripting
A vulnerability classified as problematic has been found in code-projects Human Resource Integrated System 1.0. Affected is an unknown function of the file /insert-and-view/action.php. The manipulation of the argument content leads to cross site scripting. It is possible to launch the attack...
CVE-2025-8501
The CVE-2025-8501 entry concerns code-projects Human Resource Integrated System (HRIS) version 1.0. A vulnerability in the file /insert-and-view/action.php, arising from manipulation of the content parameter, enables Cross-Site Scripting (XSS). The issue is remotely exploitable and has publicly d...
CVE-2025-8500
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely...
CVE-2025-8500 code-projects Human Resource Integrated System action.php sql injection
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely...
CVE-2025-8500
CVE-2025-8500 affects code-projects Human Resource Integrated System 1.0. The vulnerability is an SQL injection in the /insert-and-view/action.php parameter handling, caused by input manipulation. Impact is severity MEDIUM–HIGH depending on metric source, with potential remote exploitation and pu...
PT-2025-31775 · Code Projects · Human Resource Integrated System
Name of the Vulnerable Software and Affected Versions: code-projects Human Resource Integrated System version 1.0 Description: A problematic vulnerability exists in code-projects Human Resource Integrated System 1.0. The issue affects an unknown function within the /insert-and-view/action.php fil...
CVE-2024-0469
A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...
CVE-2024-0470
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been classified as critical. This affects an unknown part of the file /adminroute/incservicecredits.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...
CVE-2024-0471
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /adminroute/decservicecredits.php. The manipulation of the argument date leads to sql injection. The attack can be initiated...
CVE-2024-36897
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Atom Integrated System Info v22 for DCN35 New request from KMD/VBIOS in order to support new UMA carveout model. This fixes a null dereference from accessing Ctx-dcbios-integratedinfo while it was NULL. DAL parse...
DEBIAN-CVE-2024-36897
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Atom Integrated System Info v22 for DCN35 New request from KMD/VBIOS in order to support new UMA carveout model. This fixes a null dereference from accessing Ctx-dcbios-integratedinfo while it was NULL. DAL parse...
CVE-2024-36897 drm/amd/display: Atom Integrated System Info v2_2 for DCN35
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Atom Integrated System Info v22 for DCN35 New request from KMD/VBIOS in order to support new UMA carveout model. This fixes a null dereference from accessing Ctx-dcbios-integratedinfo while it was NULL. DAL parse...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel, which stems from a vulnerability in the drm/amd/display module Atom Integrated System Info v22 for DCN35...
CVE-2024-0471
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /adminroute/decservicecredits.php. The manipulation of the argument date leads to sql injection. The attack can be initiated...
CVE-2024-0469
A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...
Sql injection
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been classified as critical. This affects an unknown part of the file /adminroute/incservicecredits.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...
Sql injection
A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...
CVE-2024-0471
CVE-2024-0471 affects code-projects Human Resource Integrated System 1.0 in the /admin_route/dec_service_credits.php file. The root cause is manipulation of the date parameter that enables SQL injection. This vulnerability has been described as critical and is exploitable remotely, with public di...
CVE-2024-0470
CVE-2024-0470 affects code-projects Human Resource Integrated System 1.0. The vulnerability is in the /admin_route/inc_service_credits.php component where manipulating the id argument enables SQL injection. Exploitation can be performed remotely; the exploit has been disclosed publicly. Multiple ...