Biometric Shift Employee Management System@4.0 Security Vulnerabilities and Issues — Biometric Shift Employee Management System@4.0 CVE List

Lucene search

IwcnetworkBiometric Shift Employee Management System4.0

7 matches found

CVE•added 2017/12/30 4:29 a.m.•43 views

CVE-2017-17993

Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2017/12/30 4:29 a.m.•41 views

CVE-2017-17990

Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.

8.8CVSS8.6AI score0.00134EPSS

CVE•added 2017/12/30 4:29 a.m.•37 views

CVE-2017-17989

Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2017/12/30 4:29 a.m.•37 views

CVE-2017-17992

Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action.

9.8CVSS9.3AI score0.00793EPSS

CVE•added 2017/12/30 4:29 a.m.•37 views

CVE-2017-17995

Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2017/12/30 4:29 a.m.•35 views

CVE-2017-17994

Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2017/12/30 4:29 a.m.•31 views

CVE-2017-17991

Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.

5.4CVSS5.2AI score0.00206EPSS