5 matches found
CVE-2022-28019
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\employeeedit.php...
Sql injection
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...
CVE-2023-1853 SourceCodester Online Payroll System employee_edit.php cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Online Payroll System 1.0. This issue affects some unknown processing of the file /admin/employeeedit.php. The manipulation of the argument of leads to cross site scripting. The attack may be initiated remotely...
CVE-2023-1853 SourceCodester Online Payroll System employee_edit.php cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Online Payroll System 1.0. This issue affects some unknown processing of the file /admin/employeeedit.php. The manipulation of the argument of leads to cross site scripting. The attack may be initiated remotely...
CVE-2022-28019
CVE-2022-28019 affects Attendance and Payroll System v1.0; vulnerability is a SQL injection in component \admin\employee_edit.php caused by lack of input validation. Documents indicate this can be exploited to execute arbitrary SQL commands to access potentially sensitive data. CVSS details from ...