Lucene search
+L

75 matches found

Prion
Prion
added 2024/01/29 4:15 p.m.27 views

Sql injection

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editprofile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The explo...

6.5CVSS7.7AI score0.00589EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/29 4:0 p.m.12 views

CVE-2024-1007 SourceCodester Employee Management System edit_profile.php sql injection

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editprofile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The explo...

6.5CVSS7.3AI score0.00589EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/04/02 9:0 a.m.9 views

CVE-2023-1796 SourceCodester Employee Payslip Generator Create News cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Employee Payslip Generator 1.0. Affected is an unknown function of the file /classes/Master.php?f=saveposition of the component Create News Handler. The manipulation of the argument name with the input alertdocument.cookie...

3.3CVSS6.2AI score0.00539EPSS
Exploits1References3
NVD
NVD
added 2023/03/12 9:15 a.m.32 views

CVE-2023-1360

A vulnerability was found in SourceCodester Employee Payslip Generator with Sending Mail 1.2.0 and classified as critical. This issue affects some unknown processing of the file classes/Users.php?f=save of the component New User Creation. The manipulation of the argument username leads to sql...

5.8CVSS5.4AI score0.00611EPSS
Exploits1References3
Prion
Prion
added 2023/03/12 9:15 a.m.13 views

Sql injection

A vulnerability was found in SourceCodester Employee Payslip Generator with Sending Mail 1.2.0 and classified as critical. This issue affects some unknown processing of the file classes/Users.php?f=save of the component New User Creation. The manipulation of the argument username leads to sql...

5.8CVSS5.7AI score0.00611EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/02/18 8:15 a.m.40 views

CVE-2023-0905

A vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown function of the file changePasswordForEmployee.php. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.4AI score0.03189EPSS
Exploits5References3
NVD
NVD
added 2023/02/18 8:15 a.m.30 views

CVE-2023-0904

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack may be initiated remotely. The exploi...

8.8CVSS7.2AI score0.01684EPSS
Exploits5References3
Prion
Prion
added 2023/02/18 8:15 a.m.17 views

Sql injection

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack can be initiated remotely. The complexit...

4.6CVSS9AI score0.0073EPSS
Exploits5References3Affected Software1
NVD
NVD
added 2022/09/05 2:15 p.m.12 views

CVE-2022-3121

A vulnerability was found in SourceCodester Online Employee Leave Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/addemployee.php. The manipulation leads to cross-site request forgery. The attack can be...

8.8CVSS0.00241EPSS
Exploits0References1
Prion
Prion
added 2022/08/09 7:15 a.m.13 views

Sql injection

A vulnerability was found in SourceCodester Employee Management System. It has been classified as critical. Affected is an unknown function of the file /process/eprocess.php. The manipulation of the argument mailuid/pwd leads to sql injection. It is possible to launch the attack remotely. The...

7.5CVSS9.7AI score0.00772EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/08/09 7:10 a.m.28 views

CVE-2022-2724 SourceCodester Employee Management System aprocess.php sql injection

A vulnerability was found in SourceCodester Employee Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /process/aprocess.php. The manipulation of the argument mailuid leads to sql injection. The attack can be launched...

6.3CVSS10AI score0.00772EPSS
Exploits1References2
Prion
Prion
added 2022/05/09 9:15 p.m.16 views

Cross site scripting

Stored XSS in Add New Employee Form in Sourcecodester Employee Daily Task Management System 1.0 Allows Remote Attacker to Inject/Store Arbitrary Code via the Name Field...

3.5CVSS5.4AI score0.00667EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2022/05/09 8:58 p.m.77 views

CVE-2021-43712

CVE-2021-43712 corresponds to a Stored XSS vulnerability in Sourcecodester’s Employee Daily Task Management System v1.0, occurring in the Add New Employee Form Name field. The incident is described across multiple sources as enabling a remote attacker to inject/store arbitrary code via the Name f...

5.4CVSS5.3AI score0.00667EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2022/01/25 12:0 a.m.18 views

SourceCodester Employee and Visitor Gate Pass Logging System SQL注入漏洞

SourceCodester Employee and Visitor Gate Pass Logging System is a simple web-based employee and visitor pass logging system that provides companies with an automated platform to track or log the daily records of employees and visitors entering a company building or premises. A SQL injection...

10CVSS4AI score0.01556EPSS
Exploits1References1
NVD
NVD
added 2021/06/15 8:15 p.m.12 views

CVE-2020-29215

A Cross Site Scripting in SourceCodester Employee Management System 1.0 allows the user to execute alert messages via /Employee Management System/addemp.php on admin account...

5.4CVSS0.00615EPSS
Exploits1References1
Rows per page
Query Builder