CVE-2025-40683

Reflected Cross-Site Scripting XSS in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the 'searccity' parameter in /city.php...

CVE-2025-40683

CVE-2025-40683 is a reflected Cross-Site Scripting (XSS) vulnerability in Human Resource Management System version 1.0. The issue resides in the searccity parameter of the /city.php endpoint, where input is reflected without proper sanitization, allowing an attacker to execute JavaScript in the v...

PT-2025-31192 · Unknown · Human Resource Management System Version 1.0

Name of the Vulnerable Software and Affected Versions: Human Resource Management System version 1.0 Description: This issue allows an attacker to execute JavaScript code in a victim’s browser by sending a malicious URL. The vulnerability is due to a reflected Cross-Site Scripting XSS flaw in the...

CVE-2022-3471

A vulnerability was found in SourceCodester Human Resource Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file city.php. The manipulation of the argument searccity leads to sql injection. The attack can be launched remotely...

Human Resource Management System 安全漏洞

Human Resource Management System is a human resource management system by maverickosama Personal Developer. A security vulnerability exists in Human Resource Management System, which stems from an unknown function in its city.php component that operates on the parameter searccity to cause SQL...

PT-2022-22300 · Sourcecodester · Sourcecodester Human Resource Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Human Resource Management System affected versions not specified Description: A critical issue has been found in the SourceCodester Human Resource Management System, affecting an unknown functionality of the file city.php. The...