10 matches found
EUVD-2015-4071
Malware in sbrugna...
PT-2025-21568 · Horilla · Horilla
Name of the Vulnerable Software and Affected Versions: Horilla versions prior to 1.3 Description: Horilla is a free and open source Human Resource Management System HRMS. In affected versions, an attacker can manipulate a Horilla URL to refer to an external domain. Upon clicking and logging in, t...
ConnX ESP HR Management 安全漏洞
ConnX ESP HR Management is a human resource management system from ConnX Corporation. A security vulnerability exists in ConnX ESP HR Management versions prior to 6.6 that stems from an improper input neutralization issue, which leads to a stored cross-site scripting attack...
VulnCheck KEV: CVE-2024-43252
Deserialization of Untrusted Data vulnerability in Crew HRM Crew HRM hr-management.This issue affects Crew HRM: from n/a through = 1.1.1...
Human Resource Management System v1.0 - Multiple SQL injection Vulnerability
Title: Human Resource Management System v1.0 - Multiple SQLi Author: nu11secur1ty Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html Reference:...
Cross site scripting
Human Resource Management System v1.0.0 was discovered to contain a cross-site scripting XSS vulnerability. This vulnerability is triggered via a crafted payload injected into an authentication error message...
Oracle E-Business Suite Unauthorized Access Vulnerability (CNVD-2022-02349)
Oracle E-Business Suite is an extension of the original Application ERP and includes a collection of ERP Enterprise Resource Planning Management, HR Human Resource Management, CRM Customer Relationship Management and other applications that are seamlessly integrated into one management suite...
CVE-2015-4043
SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute arbitrary SQL commands via the ctl00$cphMainContent$txtUserName parameter to frmLogin.aspx...
Ultimate HR System 1.2 Cross Site Scripting / Directory Traversal
Exploit Title: HRM - Workable Zone : Ultimate HR System Last Name Other vulnerable fields include: First Name, Contact Number Unauthenticated Directory Traversal: http://localhost.com/download?type=document&filename=../../../../../etc/passwd Credits & Authors: ================== 8bitsec -...
正方某系统通用型命令执行漏洞(多案例)
简要描述: 通用型。 详细说明: 涉及系统是正方软件股份有限公司的人力资源管理系统。 部分案例列举如下: http://rczp.tyut.edu.cn/xtgl/indexsessionOut.html http://202.202.160.39:8021/zftal-hrm/xtgl/loginloginpage.html http://ywxt.suoyuan.com.cn/zftal-hrm/xtgl/loginloginpage.html http://hr.tjtc.edu.cn/zftal-hrm/xtgl/loginloginpage.html...