Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/11/19 11:15 p.m.1 views

CVE-2025-13420

A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection. The attack can be initiated remotely. The exploit has been ma...

9.8CVSS5.8AI score
Exploits0References5
Cvelist
Cvelistadded 2025/11/19 10:32 p.m.8 views

CVE-2025-13420 itsourcecode Human Resource Management System EventStore.php sql injection

A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection. The attack can be initiated remotely. The exploit has been ma...

7.5CVSS0.00028EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/11/19 10:32 p.m.2 views

CVE-2025-13420 itsourcecode Human Resource Management System EventStore.php sql injection

A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection. The attack can be initiated remotely. The exploit has been ma...

7.5CVSS7.3AI score0.00028EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/11/19 12:0 a.m.4 views

PT-2025-47538

Name of the Vulnerable Software and Affected Versions itsourcecode Human Resource Management System version 1.0 Description A flaw exists in itsourcecode Human Resource Management System 1.0 that allows for SQL injection. The issue stems from improper handling of the eventSubject argument during...

7.5CVSS7.5AI score0.00028EPSS
Exploits1References7
CNNVD
CNNVDadded 2025/11/19 12:0 a.m.2 views

itsourcecode Human Resource Management System SQL注入漏洞

itsourcecode Human Resource Management System is itsourcecode open source human resource management system. A SQL injection vulnerability exists in itsourcecode Human Resource Management System version 1.0, which stems from a misuse of the eventSubject parameter in the file...

9.8CVSS7.8AI score0.00028EPSS
Exploits1References6
Snyk
Snykadded 2025/03/31 8:42 p.m.1 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure through the normalization of the loginname attribute. An attacker can determine if a username exists in the system by observing the response behavior during the login process. Remediation Upgrade...

6.9CVSS6.9AI score0.01045EPSS
Exploits0References2
Rows per page
Query Builder