Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
ItsourcecodeLeave Management System

2 matches found

CVE
CVEadded 2025/10/08 4:32 a.m.11 views

CVE-2025-11432

CVE-2025-11432 affects itsourcecode Leave Management System 1.0. The vulnerability is in the /reset.php file where manipulating the employid parameter enables an SQL injection. The attack can be performed remotely and the exploit is publicly available. Multiple connected sources corroborate the i...

9.8CVSS7.2AI score0.00431EPSS
CVE
CVEadded 2025/10/08 5:2 a.m.10 views

CVE-2025-11433

CVE-2025-11433 affects the open-source itsourcecode Leave Management System v1.0. The vulnerability resides in the Redirect/Query Parameter Handler within the file /module/employee/controller.php?action=reset, where manipulation of the argument ID enables reflected cross-site scripting (XSS). Att...

6.1CVSS3.6AI score0.00261EPSS