Lucene search
K

80 matches found

EUVD
EUVD
added yesterday5 views

EUVD-2026-42606

A weakness has been identified in manjurulhoque django-job-portal up to dfa352f305bba44445ac5dc12e9b2a98c9dcd71f. Affected by this vulnerability is the function EditEmployeeProfileAPIView of the file accounts/api/views.py of the component Employee Dashboard Endpoint. This manipulation of the...

6.5CVSS6.2AI score
Exploits0References6
CVE
CVE
added yesterday6 views

CVE-2026-15188

The CVE affects manjurulhoque django-job-portal (up to commit dfa352f305bba44445ac5dc12e9b2a98c9dcd71f). The vulnerability resides in EditEmployeeProfileAPIView (accounts/api/views.py) of the Employee Dashboard Endpoint, where manipulating the role argument leads to improper access controls. An a...

6.5CVSS5.6AI score
Exploits0References6
Cvelist
Cvelist
added yesterday24 views

CVE-2026-15188 manjurulhoque django-job-portal Employee Dashboard Endpoint views.py EditEmployeeProfileAPIView access control

A weakness has been identified in manjurulhoque django-job-portal up to dfa352f305bba44445ac5dc12e9b2a98c9dcd71f. Affected by this vulnerability is the function EditEmployeeProfileAPIView of the file accounts/api/views.py of the component Employee Dashboard Endpoint. This manipulation of the...

6.5CVSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/10 1:35 a.m.7 views

CVE-2025-14285

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

9.8CVSS7.3AI score0.00339EPSS
Exploits1References1
CNVD
CNVD
added 2025/12/10 12:0 a.m.4 views

Employee Profile Management System Code Issue Vulnerability

Employee Profile Management System is an employee profile management system. Employee Profile Management System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter perfile in the file /profiling/addfilequery.php. No details of the...

8.8CVSS6.6AI score0.00359EPSS
Exploits1References1
CNVD
CNVD
added 2025/12/10 12:0 a.m.2 views

Employee Profile Management System print_personnel_report.php File SQL Injection Vulnerability

Employee Profile Management System is an employee profile management system. An SQL injection vulnerability exists in Employee Profile Management System, which stems from the lack of validation of externally entered SQL statements in the parameter perid in the file /printpersonnelreport.php. An...

8.8CVSS7.2AI score0.0027EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 7:37 a.m.6 views

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

8.8CVSS6.8AI score0.0027EPSS
Exploits1References1
NVD
NVD
added 2025/12/09 1:16 a.m.8 views

CVE-2025-14285

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

9.8CVSS0.00339EPSS
Exploits1References5
OSV
OSV
added 2025/12/09 1:16 a.m.12 views

CVE-2025-14285

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

9.8CVSS5.8AI score0.00339EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/09 1:2 a.m.30 views

CVE-2025-14285 code-projects Employee Profile Management System edit_personnel.php sql injection

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

7.5CVSS0.00339EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/09 1:2 a.m.3 views

CVE-2025-14285 code-projects Employee Profile Management System edit_personnel.php sql injection

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

7.5CVSS6.8AI score0.00339EPSS
Exploits1References5
EUVD
EUVD
added 2025/12/09 1:2 a.m.5 views

EUVD-2025-201842

A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...

7.5CVSS6.5AI score0.00339EPSS
Exploits1References6
CVE
CVE
added 2025/12/09 1:2 a.m.13 views

CVE-2025-14285

Code-projects Employee Profile Management System 1.0 is affected by a SQL injection in edit_personnel.php via the per_id parameter. The flaw enables remote exploitation and has publicly available exploits; multiple sources corroborate the issue. There is no product-specific patch details in the p...

9.8CVSS6.8AI score0.00339EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Code-Projects Employee Profile Management System 安全漏洞

Employee Profile Management System is an employee profile management system. The Employee Profile Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter perid in the file editpersonnel.php. An...

9.8CVSS7.2AI score0.00339EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.9 views

PT-2025-49687

Name of the Vulnerable Software and Affected Versions code-projects Employee Profile Management System version 1.0 Description A flaw exists in the Employee Profile Management System that allows for remote code execution. The issue is located in the edit personnel.php file, specifically within an...

9.8CVSS7.9AI score0.00339EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/12/08 3:17 p.m.10 views

CVE-2025-14195

A security flaw has been discovered in code-projects Employee Profile Management System 1.0. Impacted is an unknown function of the file /profiling/addfilequery.php. The manipulation of the argument perfile results in unrestricted upload. The attack may be launched remotely. The exploit has been...

8.8CVSS6.2AI score0.00359EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/08 3:17 p.m.7 views

CVE-2025-14194

A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /viewpersonnel.php. The manipulation of the argument peraddress/drschool/otherschool leads to cross site scripting. The attack may be initiated remotely...

5.4CVSS3.6AI score0.00218EPSS
Exploits1References1
NVD
NVD
added 2025/12/08 8:15 a.m.9 views

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

8.8CVSS0.0027EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 8:15 a.m.12 views

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

8.8CVSS5.8AI score
Exploits0References5
CVE
CVE
added 2025/12/08 7:32 a.m.9 views

CVE-2025-14222

CVE-2025-14222 affects code-projects’ Employee Profile Management System 1.0. The vulnerability is an SQL injection in the file /print_personnel_report.php, triggered by manipulation of the per_id parameter due to lack of input validation. Public exploitation is indicated, with remote access poss...

8.8CVSS6.6AI score0.0027EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder