Lucene search
+L

75 matches found

CNNVD
CNNVD
added 2025/02/23 12:0 a.m.5 views

SourceCodester Employee Management System 代码注入漏洞

SourceCodester Employee Management System is SourceCodester open source a php-based for employee performance management system . A code injection vulnerability exists in version 1.0 of the SourceCodester Employee Management System, which originates from cross-site scripting due to incorrect...

6.1CVSS4.1AI score0.0027EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/10 12:0 a.m.6 views

SourceCodester Employee Management System 安全漏洞

SourceCodester Employee Management System is a SourceCodester open source php-based system for employee performance management. A security vulnerability exists in SourceCodester Employee Management System version 1.0, which stems from an incorrect operation of the username/password parameters tha...

9.8CVSS7.5AI score0.00916EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 1:53 a.m.14 views

CVE-2024-2572

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.1AI score0.0103EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/14 12:0 a.m.4 views

SourceCodester Best Employee Management System 安全漏洞

SourceCodester Best Employee Management System is a SourceCodester open source employee management system. A security vulnerability exists in SourceCodester Best Employee Management System version 1.0, which originates from an unrestricted file upload vulnerability in the websiteimage parameter i...

7.2CVSS5.2AI score0.00629EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/22 8:31 a.m.34 views

CVE-2024-9083 SourceCodester Employee Management System add-admin.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

5.1CVSS0.00418EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/07/24 3:31 p.m.36 views

CVE-2024-7069 SourceCodester Employee and Visitor Gate Pass Logging System sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employeegatepass/classes/Master.php?f=deletedepartment. The manipulation of the argument id leads to sql...

6.5CVSS0.00423EPSS
Exploits1References4
NVD
NVD
added 2024/07/22 3:15 a.m.31 views

CVE-2024-6967

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. This affects an unknown part of the file /employeegatepass/admin/?page=employee/manageemployee. The manipulation of the argument id leads to sql injection. It is...

7.5CVSS0.00453EPSS
Exploits1References4
CVE
CVE
added 2024/07/22 2:31 a.m.59 views

CVE-2024-6967

The CVE-2024-6967 entry affects SourceCodester Employee and Visitor Gate Pass Logging System v1.0. The vulnerability arises in the endpoint /employee_gatepass/admin/?page=employee/manage_employee where the id parameter is used unsafely, leading to SQL injection. This allows remote exploitation an...

7.5CVSS6.8AI score0.00453EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/06/12 4:15 p.m.24 views

CVE-2024-5896

A vulnerability, which was classified as critical, was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is the function saveusers of the file /classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

9.8CVSS0.00682EPSS
Exploits1References4
NVD
NVD
added 2024/05/16 1:15 a.m.24 views

CVE-2024-4921

A vulnerability classified as critical has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is an unknown function of the file /employeegatepass/classes/Users.php?f=ssave. The manipulation of the argument img leads to unrestricted upload. It is possible to...

9.8CVSS6.5AI score0.00674EPSS
Exploits1References4
OSV
OSV
added 2024/05/01 7:15 p.m.7 views

CVE-2023-23022

Cross site scripting XSS vulnerability in sourcecodester oretnom23 employee's payroll management system 1.0, allows attackers to execute arbitrary code via the code, title, fromdate and todate inputs in file Main.php...

6.1CVSS5.9AI score0.00454EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/25 12:0 a.m.17 views

CVE-2024-33247

Sourcecodester Employee Task Management System v1.0 is vulnerable to SQL Injection via admin-manage-user.php...

8.1AI score0.00669EPSS
Exploits1References1
CVE
CVE
added 2024/04/25 12:0 a.m.62 views

CVE-2024-33247

CVE-2024-33247 affects Sourcecodester Employee Task Management System v1.0, with a SQL injection vulnerability in the file/admin page admin-manage-user.php. The vulnerability is documented across multiple sources and targets the admin input handling, but the connected documents provide no public ...

8.8CVSS8AI score0.00669EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/03/18 3:15 a.m.25 views

CVE-2024-2577

A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /update-employee.php. The manipulation of the argument adminid leads to authorization bypass. The attack can be initiated remotely...

9.8CVSS7.3AI score0.00669EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/18 2:31 a.m.46 views

CVE-2024-2577 SourceCodester Employee Task Management System update-employee.php authorization

A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /update-employee.php. The manipulation of the argument adminid leads to authorization bypass. The attack can be initiated remotely...

7.5CVSS7.5AI score0.00669EPSS
Exploits0References3
NVD
NVD
added 2024/03/18 2:15 a.m.26 views

CVE-2024-2576

A vulnerability, which was classified as critical, was found in SourceCodester Employee Task Management System 1.0. This affects an unknown part of the file /update-admin.php. The manipulation of the argument adminid leads to authorization bypass. It is possible to initiate the attack remotely. T...

9.8CVSS7.2AI score0.00669EPSS
Exploits0References3
OSV
OSV
added 2024/03/18 2:15 a.m.6 views

CVE-2024-2574

A vulnerability classified as critical was found in SourceCodester Employee Task Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit-task.php. The manipulation of the argument taskid leads to authorization bypass. The attack can be launched remotely...

9.8CVSS5.5AI score0.00669EPSS
Exploits0References3
NVD
NVD
added 2024/03/18 2:15 a.m.17 views

CVE-2024-2575

A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task Management System 1.0. Affected by this issue is some unknown functionality of the file /task-details.php. The manipulation of the argument taskid leads to authorization bypass. The attack may be...

9.8CVSS7.2AI score0.00669EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/18 2:0 a.m.17 views

CVE-2024-2575 SourceCodester Employee Task Management System task-details.php authorization

A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task Management System 1.0. Affected by this issue is some unknown functionality of the file /task-details.php. The manipulation of the argument taskid leads to authorization bypass. The attack may be...

7.5CVSS6.9AI score0.00669EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/18 12:31 a.m.15 views

CVE-2024-2571 SourceCodester Employee Task Management System manage-admin.php redirect

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage-admin.php. The manipulation leads to execution after redirect. The attack can be initiated remotely. The exploit has been...

7.5CVSS7.2AI score0.0103EPSS
Exploits0References3
Rows per page
Query Builder