CVE-2026-10286

A vulnerability was found in CodeAstro Payroll System 1.0. This affects an unknown part of the file /homeemployee.php. The manipulation of the argument empid results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

CVE-2026-5681

CVE-2026-5681 affects the itsourcecode component’s Parameter Handler, specifically the /borrowedequip.php file where the emp_id input is not properly sanitized/validated, enabling a remote SQL injection. Exploits have been published and may be used. CVSS data indicates MEDIUM severity (CVSS 4.0 b...

itsourcecode Construction Management System SQL注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability. This vulnerability arises from incorrect operations with the empid parameter in...

EUVD-2009-2422

Malware in sbrugna...

EUVD-2025-8718

Malicious code in bioql PyPI...

Human Resource Integrated System login_timeee.php File SQL Injection Vulnerability

Human Resource Integrated System is a human resource management system. Human Resource Integrated System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter empid in the file /logintimeee.php. An attacker can...

CVE-2025-9733

CVE-2025-9733 affects code-projects Human Resource Integrated System 1.0. The vulnerable component is the file /login_timeee.php where manipulation of the parameter emp_id enables SQL injection . Root cause is insufficient validation/handling of external input in that parameter, allowing remote e...

CVE-2025-2984 code-projects Payroll Management System delete.php sql injection

A vulnerability was found in code-projects Payroll Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /delete.php. The manipulation of the argument empid leads to sql injection. The attack may be launched remotely. The exploit has be...

CVE-2023-31938

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

Sql injection

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

Sql injection

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

CVE-2023-31938

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

CVE-2023-31944

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

CVE-2023-31944

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

Sql injection

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the empid parameter...

CVE-2009-2427

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the empid parameter...

CVE-2009-2427

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the empid parameter...