4 matches found
Employee Management System 1.0 SQL Injection
Exploit Title: SQL Injection vulnerability in Employee Management System. Date: 20-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Version: 1....
Employee Management System 1.0 - (admin_id) SQL injection Vulnerability
Exploit Title: Employee Management System 1.0 - 'adminid' SQLi Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Version: 1.0 Tested on: Windows, Linux...
Employee Management System 1.0 - 'admin_id' SQLi
Exploit Title: Employee Management System 1.0 - 'adminid' SQLi Date: 20-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Version: 1.0 Tested on...
CVE-2024-28595
CVE-2024-28595 is a SQL Injection vulnerability in Employee Management System v1.0 that can be exploited via the admin_id parameter in update-admin.php to execute arbitrary SQL. The affected component is the Employee Management System’s update-admin.php endpoint; root cause is unsafe handling of ...