Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:45 p.m.12 views

CVE-2026-37347

SourceCodester Payroll Management and Information System v1.0 is vulnerable to SQL Injection in the file /payroll/viewemployee.php...

9.1CVSS5.7AI score0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/01 7:30 p.m.11 views

EUVD-2026-33756

A vulnerability was found in CodeAstro Payroll System 1.0. This affects an unknown part of the file /homeemployee.php. The manipulation of the argument empid results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS5.6AI score0.00204EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.10 views

SourceCodester Payroll Management and Information System 安全漏洞

SourceCodester Payroll Management and Information System is an open-source payroll management and information system developed by SourceCodester. Version 1.0 of SourceCodester Payroll Management and Information System contains a security vulnerability, which stems from the file...

9.1CVSS5.8AI score0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/14 3:30 p.m.4 views

EUVD-2026-22264

SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injection in the file /wfhattendance/admin/manageemployee.php...

2.7CVSS5.9AI score0.00186EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 3:16 p.m.3 views

CVE-2026-37595

SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injection in the file /wfhattendance/admin/manageemployee.php...

2.7CVSS0.00186EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 12:0 a.m.2 views

CVE-2026-37595

SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injection in the file /wfhattendance/admin/manageemployee.php...

5.9AI score0.00186EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.4 views

PT-2026-32636

CVE-2026-37595 SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injection in the file /wfh attendance/admin/manage employee.php. https://t.co/mf3uV1c2ec...

2.7CVSS5.8AI score0.00186EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/02 5:4 a.m.4 views

CVE-2026-5238

A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /viewemployee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/01 12:31 a.m.5 views

EUVD-2026-17733

A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /viewemployee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/31 11:45 p.m.33 views

CVE-2026-5238 itsourcecode Payroll Management System Parameter view_employee.php sql injection

A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /viewemployee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed...

7.5CVSS0.00259EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.4 views

PT-2026-29409

A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /view employee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/03/16 7:2 a.m.2 views

CVE-2026-4223

A vulnerability was identified in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /manageemployee.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might b...

7.5CVSS5.8AI score0.00446EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/03/16 7:2 a.m.9 views

CVE-2026-4223

The CVE-2026-4223 entry concerns the itsourcecode Payroll Management System 1.0. Affected component: /manage_employee.php. Root cause: manipulation of the ID argument leads to SQL injection. Impact is high (confidentiality, integrity, and availability affected per multiple CVSS vectors), with rem...

9.8CVSS7AI score0.00446EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25831

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00455EPSS
Exploits1References6
OSV
OSV
added 2025/08/26 6:15 a.m.3 views

CVE-2025-9475

A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /AdminDashboard/process/editemployeeprocess.php. This manipulation of the argument employeefile201 causes unrestricted upload. The attack may be...

9.8CVSS5.5AI score0.00455EPSS
Exploits1References6
NVD
NVD
added 2025/08/26 6:15 a.m.6 views

CVE-2025-9475

A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /AdminDashboard/process/editemployeeprocess.php. This manipulation of the argument employeefile201 causes unrestricted upload. The attack may be...

9.8CVSS0.00455EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/08/26 6:2 a.m.12 views

CVE-2025-9476 SourceCodester Human Resource Information System editemployee_process.php unrestricted upload

A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /SuperadminDashboard/process/editemployeeprocess.php. Such manipulation of the argument employeefile201 leads to unrestricted upload. The attack...

7.5CVSS0.00455EPSS
Exploits1References6
CVE
CVE
added 2025/08/26 6:2 a.m.25 views

CVE-2025-9476

CVE-2025-9476 affects the SourceCodester Human Resource Information System 1.0, specifically an issue in the file /Superadmin_Dashboard/process/editemployee_process.php. The vulnerability arises from manipulation of the argument employee_file201, enabling an unrestricted file upload. This can be ...

9.8CVSS7.2AI score0.00455EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/05/16 4:15 a.m.6 views

CVE-2025-4744

A vulnerability, which was classified as problematic, has been found in code-projects Employee Record System 1.0. Affected by this issue is some unknown functionality of the file dashboard\editemployee.php. The manipulation of the argument employeedid/firstname/middlename/lastname leads to cross...

4.6CVSS3.8AI score0.00285EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/05/16 4:0 a.m.16 views

CVE-2025-4744 code-projects Employee Record System edit_employee.php cross site scripting

A vulnerability, which was classified as problematic, has been found in code-projects Employee Record System 1.0. Affected by this issue is some unknown functionality of the file dashboard\editemployee.php. The manipulation of the argument employeedid/firstname/middlename/lastname leads to cross...

5.1CVSS0.00285EPSS
Exploits1References5
Rows per page
Query Builder