21 matches found
CVE-2024-9315
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance/managedepartment.php. The manipulation of the argument id leads to sql injection. The attack may ...
CVE-2024-9315
CVE-2024-9315 affects SourceCodester Employee and Visitor Gate Pass Logging System v1.0. The issue is a SQL injection in the /admin/maintenance/manage_department.php page caused by unsafely handling the id parameter, enabling remote exploitation. Multiple sources confirm the vulnerability details...
CVE-2024-7069
A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employeegatepass/classes/Master.php?f=deletedepartment. The manipulation of the argument id leads to sql...
CVE-2024-7069 SourceCodester Employee and Visitor Gate Pass Logging System sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employeegatepass/classes/Master.php?f=deletedepartment. The manipulation of the argument id leads to sql...
CVE-2024-6967
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. This affects an unknown part of the file /employeegatepass/admin/?page=employee/manageemployee. The manipulation of the argument id leads to sql injection. It is...
CVE-2024-6967 SourceCodester Employee and Visitor Gate Pass Logging System sql injection
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. This affects an unknown part of the file /employeegatepass/admin/?page=employee/manageemployee. The manipulation of the argument id leads to sql injection. It is...
CVE-2024-6967
The CVE-2024-6967 entry affects SourceCodester Employee and Visitor Gate Pass Logging System v1.0. The vulnerability arises in the endpoint /employee_gatepass/admin/?page=employee/manage_employee where the id parameter is used unsafely, leading to SQL injection. This allows remote exploitation an...
CVE-2024-6736 SourceCodester Employee and Visitor Gate Pass Logging System view_employee.php sql injection
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file viewemployee.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely...
CVE-2024-6650
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this issue is the function savedesignation of the file /classes/Master.php. The manipulation leads to cross site scripting. The attack may be launched remotely...
CVE-2024-6650
Summary: CVE-2024-6650 affects the SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Multiple connected records confirm that the vulnerability arises in the function save_designation within /classes/Master.php , enabling a cross-site scripting (XSS) condition. The attack is descri...
CVE-2024-6649 SourceCodester Employee and Visitor Gate Pass Logging System Users.php save_users cross-site request forgery
A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is the function saveusers of the file Users.php. The manipulation leads to cross-site request forgery. The attack can be launched...
CVE-2024-6649 SourceCodester Employee and Visitor Gate Pass Logging System Users.php save_users cross-site request forgery
A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is the function saveusers of the file Users.php. The manipulation leads to cross-site request forgery. The attack can be launched...
CVE-2024-6649
CVE-2024-6649 affects SourceCodester Employee and Visitor Gate Pass Logging System 1.0, specifically the save_users function in Users.php, where manipulation enables cross-site request forgery. The vulnerability can be exploited remotely and has public tooling/descriptions. Exploitation details a...
CVE-2024-5896
A vulnerability, which was classified as critical, was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is the function saveusers of the file /classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...
CVE-2024-4921
A vulnerability classified as critical has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is an unknown function of the file /employeegatepass/classes/Users.php?f=ssave. The manipulation of the argument img leads to unrestricted upload. It is possible to...
CVE-2024-4921
CVE-2024-4921 affects the SourceCodester Employee and Visitor Gate Pass Logging System 1.0. The vulnerability is in an unknown function of the file /employee_gatepass/classes/Users.php?f=ssave, where manipulation of the img parameter enables unrestricted upload. This can be exploited remotely, an...
Sql injection
SourceCodester Employee and Visitor Gate Pass Logging System v1.0 is vulnerable to SQL Injection via /employeegatepass/classes/Login.php...
Sql injection
A vulnerability classified as critical has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is an unknown function of the file /admin/maintenance/viewdesignation.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...
SourceCodester Employee and Visitor Gate Pass Logging System SQL注入漏洞
SourceCodester Employee and Visitor Gate Pass Logging System is a simple web-based employee and visitor pass logging system that provides companies with an automated platform to track or log the daily records of employees and visitors entering a company building or premises. A SQL injection...
CVE-2021-46309
An SQL Injection vulnerability exists in Sourcecodester Employee and Visitor Gate Pass Logging System 1.0 via the username parameter...