Lucene search
K

73 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:46 a.m.7 views

CVE-2023-29625

Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server...

8.8CVSS8.2AI score0.00955EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:27 p.m.5 views

CVE-2022-40435

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via adding new entries under the Departments and Designations module...

4.8CVSS5AI score0.00573EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:31 p.m.9 views

CVE-2020-35271

Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting XSS in the Employees, First Name and Last Name fields...

4.8CVSS6.1AI score0.00546EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:30 p.m.8 views

CVE-2020-35272

Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting XSS in the Admin Portal in the Task and Description fields...

4.8CVSS6.1AI score0.00591EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/04/23 12:0 a.m.6 views

A Collaborative Intrusion Detection System Using Snort IDS Nodes

Intrusion Detection Systems IDSs are integral to safeguarding networks by detecting and responding to threats from malicious traffic or compromised devices. However, standalone IDS deployments often fall short when addressing the increasing complexity and scale of modern cyberattacks. This paper...

6.7AI score
Exploits0
NVD
NVD
added 2023/04/14 2:15 a.m.15 views

CVE-2023-29625

Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server...

8.8CVSS8.9AI score0.00955EPSS
Exploits1References1
OSV
OSV
added 2023/04/14 2:15 a.m.4 views

CVE-2023-29625

Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server...

8.8CVSS7.6AI score0.00955EPSS
Exploits1References1
Prion
Prion
added 2023/04/14 2:15 a.m.10 views

Privilege escalation

Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server...

6.5CVSS8.9AI score0.00955EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/14 12:0 a.m.3 views

PT-2023-22336 · Unknown · Employee Performance Evaluation System

Name of the Vulnerable Software and Affected Versions: Employee Performance Evaluation System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted file uploaded to the server. This is due to an arbitrary file upload vulnerability in the system...

8.8CVSS8.8AI score0.00955EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/04/14 12:0 a.m.8 views

CVE-2023-29625

Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server...

9AI score0.00955EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/04/14 12:0 a.m.3 views

Employee Performance Evaluation System 代码问题漏洞

Employee Performance Evaluation System is an employee performance evaluation system by Carlo Montero personal developer. A security vulnerability exists in Employee Performance Evaluation System v1.0. An attacker can exploit this vulnerability to execute arbitrary code via specially crafted files...

8.8CVSS8.5AI score0.00955EPSS
Exploits1References2
0day.today
0day.today
added 2023/03/27 12:0 a.m.211 views

Employee Performance Evaluation System v1.0 - File Inclusion / Remote Code Execution Exploit

Exploit Title: Employee Performance Evaluation System v1.0 - File Inclusion and RCE Exploit Author: nu11secur1ty Vendor: https://www.sourcecodester.com/user/257130/activity Software: https://www.sourcecodester.com/php/14617/employee-performance-evaluation-system-phpmysqli-source-code.html...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2023/03/25 12:0 a.m.167 views

Employee Performance Evaluation System v1.0 - File Inclusion and RCE

Exploit Title: Employee Performance Evaluation System v1.0 - File Inclusion and RCE Exploit Author: nu11secur1ty Date: 03.17.2023 Vendor: https://www.sourcecodester.com/user/257130/activity Software:...

7.4AI score
Exploits0
NVD
NVD
added 2022/12/19 5:15 p.m.11 views

CVE-2022-40435

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via adding new entries under the Departments and Designations module...

4.8CVSS0.00573EPSS
Exploits1References2
Prion
Prion
added 2022/12/19 5:15 p.m.13 views

Cross site scripting

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via adding new entries under the Departments and Designations module...

4.3CVSS5AI score0.00573EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/19 12:0 a.m.4 views

PT-2022-25383 · Unknown · Employee Performance Evaluation System

Name of the Vulnerable Software and Affected Versions: Employee Performance Evaluation System version 1.0 Description: The issue is related to a persistent cross-site scripting XSS vulnerability. This vulnerability can be exploited via adding new entries under the Departments and Designations...

4.8CVSS4.8AI score0.00573EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/12/19 12:0 a.m.6 views

CVE-2022-40435

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via adding new entries under the Departments and Designations module...

6.2AI score0.00573EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/12/19 12:0 a.m.20 views

CVE-2022-40435

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via adding new entries under the Departments and Designations module...

5.2AI score0.00573EPSS
Exploits1References2
CVE
CVE
added 2022/12/19 12:0 a.m.59 views

CVE-2022-40435

CVE-2022-40435 affects Employee Performance Evaluation System v1.0. The vulnerability is a persistent cross-site scripting (XSS) flaw that can be triggered by adding new entries in the Departments and Designations module. The CVSS v3.1 vector (AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N) yields a base sc...

4.8CVSS5AI score0.00573EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/04/05 8:15 p.m.4 views

CVE-2022-27123

Employee Performance Evaluation v1.0 was discovered to contain a SQL injection vulnerability via the email parameter...

9.8CVSS5.8AI score0.01254EPSS
Exploits1References1
Rows per page
Query Builder