Lucene search
K

68 matches found

NVD
NVD
added 2025/08/31 7:15 p.m.6 views

CVE-2025-9742

A vulnerability was identified in code-projects Human Resource Integrated System 1.0. This issue affects some unknown processing of the file /login.php. Such manipulation of the argument user/pass leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly...

7.5CVSS0.0041EPSS
Exploits1References5
OSV
OSV
added 2025/08/31 7:15 p.m.4 views

CVE-2025-9742

A vulnerability was identified in code-projects Human Resource Integrated System 1.0. This issue affects some unknown processing of the file /login.php. Such manipulation of the argument user/pass leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly...

7.5CVSS5.8AI score0.0041EPSS
Exploits1References5
OSV
OSV
added 2025/08/31 7:15 p.m.5 views

CVE-2025-9741

A vulnerability was determined in code-projects Human Resource Integrated System 1.0. This vulnerability affects unknown code of the file /loginquery12.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References5
CVE
CVE
added 2025/08/31 7:2 p.m.16 views

CVE-2025-9742

CVE-2025-9742 affects code-projects' Human Resource Integrated System 1.0. The vulnerability arises from improper handling of the login.php input, where manipulation of the user/pass parameters enables SQL injection. Impact stated in sources includes potential remote exploitation and data exposur...

7.5CVSS7.3AI score0.0041EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/08/31 6:32 p.m.9 views

CVE-2025-9741 code-projects Human Resource Integrated System login_query12.php sql injection

A vulnerability was determined in code-projects Human Resource Integrated System 1.0. This vulnerability affects unknown code of the file /loginquery12.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...

7.5CVSS0.00377EPSS
Exploits1References5
OSV
OSV
added 2025/08/31 6:15 p.m.4 views

CVE-2025-9740

A vulnerability was found in code-projects Human Resource Integrated System 1.0. This affects an unknown part of the file /logquery.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

9.8CVSS5.7AI score0.00435EPSS
Exploits1References5
NVD
NVD
added 2025/08/31 6:15 p.m.7 views

CVE-2025-9740

A vulnerability was found in code-projects Human Resource Integrated System 1.0. This affects an unknown part of the file /logquery.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

9.8CVSS0.00435EPSS
Exploits1References5
CVE
CVE
added 2025/08/31 6:2 p.m.25 views

CVE-2025-9740

CVE-2025-9740 affects code-projects Human Resource Integrated System 1.0. The vulnerability is in /log_query.php where manipulation of the ID parameter enables SQL injection, with remote exploitation and public availability of the exploit. Multiple sources corroborate the issue across vendors and...

9.8CVSS7.2AI score0.00435EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/08/31 6:2 p.m.10 views

CVE-2025-9740 code-projects Human Resource Integrated System log_query.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. This affects an unknown part of the file /logquery.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

7.5CVSS0.00435EPSS
Exploits1References5
OSV
OSV
added 2025/08/31 3:15 p.m.4 views

CVE-2025-9733

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /logintimeee.php. Performing manipulation of the argument empid results in sql injection. The attack may be initiated remotely. The exploit has been released to...

9.8CVSS5.8AI score0.00435EPSS
Exploits1References5
CVE
CVE
added 2025/08/31 2:32 p.m.20 views

CVE-2025-9733

CVE-2025-9733 affects code-projects Human Resource Integrated System 1.0. The vulnerable component is the file /login_timeee.php where manipulation of the parameter emp_id enables SQL injection . Root cause is insufficient validation/handling of external input in that parameter, allowing remote e...

9.8CVSS7.4AI score0.00435EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/31 2:32 p.m.4 views

CVE-2025-9733 code-projects Human Resource Integrated System login_timeee.php sql injection

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /logintimeee.php. Performing manipulation of the argument empid results in sql injection. The attack may be initiated remotely. The exploit has been released to...

7.5CVSS6.9AI score0.00435EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/31 12:0 a.m.6 views

PT-2025-35423

Name of the Vulnerable Software and Affected Versions: code-projects Human Resource Integrated System version 1.0 Description: A SQL injection issue exists due to unknown processing of the file /login.php. Manipulation of the user/pass argument can lead to SQL injection, allowing for remote...

7.5CVSS7.5AI score0.0041EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/08/31 12:0 a.m.7 views

PT-2025-35414

Name of the Vulnerable Software and Affected Versions: code-projects Human Resource Integrated System version 1.0 Description: A security flaw exists in code-projects Human Resource Integrated System version 1.0. The issue impacts an unknown function within the /login timeee.php file. Manipulatio...

9.8CVSS7.4AI score0.00435EPSS
Exploits1References13
CNNVD
CNNVD
added 2025/08/31 12:0 a.m.5 views

Code-Projects Human Resource Integrated System 安全漏洞

Human Resource Integrated System is a human resource management system. Human Resource Integrated System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter empid in the file /logintimeee.php. An attacker can...

9.8CVSS8.1AI score0.00435EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.5 views

SourceCodester Human Resource Information System 安全漏洞

SourceCodester Human Resource Information System is an open source human resource information system from SourceCodester. A security vulnerability exists in SourceCodester Human Resource Information System version 1.0, which originates from a misbehavior of the parameter employee in the file...

9.8CVSS7.4AI score0.00455EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/08/05 5:10 a.m.10 views

CVE-2025-8500

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely...

8.8CVSS6.7AI score0.00476EPSS
Exploits1References1
OSV
OSV
added 2025/08/03 5:15 a.m.3 views

CVE-2025-8500

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely...

8.8CVSS5.8AI score0.00476EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/03 5:2 a.m.11 views

CVE-2025-8500 code-projects Human Resource Integrated System action.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely...

6.5CVSS0.00476EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/03 12:0 a.m.4 views

Code-Projects Human Resource Integrated System 代码注入漏洞

Human Resource Integrated System is a human resource management system. A cross-site scripting vulnerability exists in Human Resource Integrated System, which originates from the unspecified parameter content not being security filtered in the /insert-and-view/action.php file. An attacker could...

5.4CVSS4.4AI score0.00354EPSS
Exploits1References6
Rows per page
Query Builder