CVE-2025-1607 SourceCodester Best Employee Management System salary_slip.php authorization

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Employee Management System 1.0. This issue affects some unknown processing of the file /admin/salaryslip.php. The manipulation of the argument id leads to authorization bypass. The attack may be initiated...

CVE-2025-1607

CVE-2025-1607 affects SourceCodester Best Employee Management System 1.0, where manipulating the id parameter in /admin/salary_slip.php leads to an authorization bypass. The vulnerability arises in processing of the salary_slip password/ID input (unknown internal handling) and allows an attacker ...

CVE-2025-1607 SourceCodester Best Employee Management System salary_slip.php authorization

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Employee Management System 1.0. This issue affects some unknown processing of the file /admin/salaryslip.php. The manipulation of the argument id leads to authorization bypass. The attack may be initiated...

CVE-2025-1598

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/assetcrud.php. The manipulation of the argument photo1 leads to unrestricted upload. The attack can ...

CVE-2025-1606

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

CVE-2025-1598

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/assetcrud.php. The manipulation of the argument photo1 leads to unrestricted upload. The attack can ...

CVE-2025-1599

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/app/profilecrud.php. The manipulation of the argument oldcatimg leads to path traversal: '../filedir'. The...

CVE-2025-1606 SourceCodester Best Employee Management System backups.php information disclosure

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

CVE-2025-1606

The CVE-2025-1606 entry affects SourceCodester Best Employee Management System 1.0, specifically the file /admin/backup/backups.php, where manipulation leads to information disclosure. Documents consistently state remote exploitation and that the public exploit is disclosed; vendor response is no...

CVE-2025-1606 SourceCodester Best Employee Management System backups.php information disclosure

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

CVE-2025-1599 SourceCodester Best Church Management Software profile_crud.php path traversal

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/app/profilecrud.php. The manipulation of the argument oldcatimg leads to path traversal: '../filedir'. The...

CVE-2025-1599

SourceCodester Best Church Management Software 1.0 contains a path traversal vulnerability in /admin/app/profile_crud.php by manipulating the old_cat_img parameter (path: ../filedir). The issue is exploitable remotely and has been publicly disclosed; vendor has not responded. Connected advisories...

CVE-2025-1599 SourceCodester Best Church Management Software profile_crud.php path traversal

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/app/profilecrud.php. The manipulation of the argument oldcatimg leads to path traversal: '../filedir'. The...

SourceCodester Best Employee Management System 访问控制错误漏洞

SourceCodester Best Employee Management System is a SourceCodester open source employee management system. An access control error vulnerability exists in SourceCodester Best Employee Management System version 1.0. An attacker can exploit this vulnerability to disclose sensitive information...

SourceCodester Best Church Management Software 安全漏洞

SourceCodester Best Church Management Software is an open source church management software from SourceCodester. A security vulnerability exists in SourceCodester Best Church Management Software version 1.0, which stems from a path traversal due to incorrect operation of the parameter oldcatimg...

SourceCodester Best Church Management Software 代码问题漏洞

SourceCodester Best Church Management Software is an open source church management software from SourceCodester. A code issue vulnerability exists in version 1.0 of SourceCodester Best Church Management Software, which stems from an incorrect manipulation of the parameter photo1 resulting in...

CVE-2025-1598 SourceCodester Best Church Management Software asset_crud.php unrestricted upload

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/assetcrud.php. The manipulation of the argument photo1 leads to unrestricted upload. The attack can ...

CVE-2025-1598 SourceCodester Best Church Management Software asset_crud.php unrestricted upload

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/assetcrud.php. The manipulation of the argument photo1 leads to unrestricted upload. The attack can ...

CVE-2025-1597

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/redirect.php. The manipulation of the argument a leads to cross site scripting. It is possible to launch the attack remotely...

CVE-2025-1596

A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical. This issue affects some unknown processing of the file /fpassword.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has...