4 matches found
CVE-2025-7127
creationtimestamp| type| source ---|---|--- 2025-07-07 15:27:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltf3y64yva2l...
CVE-2025-7127 itsourcecode Employee Management System changepassword.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System up to 1.0. This affects an unknown part of the file /admin/changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to initiate the attack...
CVE-2025-7127
CVE-2025-7127 affects itsourcecode Employee Management System up to v1.0, with a SQL injection in /admin/changepassword.php caused by unsafely handling the currentpassword parameter. Exploitation can be performed remotely; public disclosure is noted. Connected sources also suggest mitigations suc...
CVE-2025-7127 itsourcecode Employee Management System changepassword.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System up to 1.0. This affects an unknown part of the file /admin/changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to initiate the attack...