Best Employee Management System Security Vulnerabilities and Issues — Best Employee Management System CVE List

Lucene search

MayurikBest Employee Management System

9 matches found

CVE•added 2025/02/24 12:15 a.m.•63 views

CVE-2025-1606

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disc...

7.5CVSS6.6AI score0.0006EPSS

CVE•added 2025/02/23 8:15 p.m.•53 views

CVE-2025-1592

A vulnerability was found in SourceCodester Best Employee Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/Operations/Role.php of the component Add Role Page. The manipulation of the argument assign_name/description lea...

6.1CVSS3.5AI score0.00031EPSS

CVE•added 2025/03/06 10:15 p.m.•52 views

CVE-2025-2046

A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/print1.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploi...

9.8CVSS7.6AI score0.00055EPSS

CVE•added 2025/02/24 1:15 a.m.•49 views

CVE-2025-1607

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Employee Management System 1.0. This issue affects some unknown processing of the file /admin/salary_slip.php. The manipulation of the argument id leads to authorization bypass. The attack may be initiated r...

5.3CVSS4.7AI score0.00014EPSS

CVE•added 2025/01/29 2:15 a.m.•41 views

CVE-2025-0802

A vulnerability classified as critical was found in SourceCodester Best Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/View_user.php of the component Administrative Endpoint. The manipulation leads to improper access controls. The attac...

8.1CVSS7.4AI score0.00017EPSS

CVE•added 2025/02/23 8:15 p.m.•36 views

CVE-2025-1593

A vulnerability classified as critical has been found in SourceCodester Best Employee Management System 1.0. This affects an unknown part of the file /_hr_soft/assets/uploadImage/Profile/ of the component Profile Picture Handler. The manipulation leads to unrestricted upload. It is possible to init...

9.8CVSS4.9AI score0.00038EPSS

CVE•added 2025/05/14 5:15 p.m.•26 views

CVE-2025-44184

SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the website_image, fname, lname, contact, username, and address parameters.

4.8CVSS6.1AI score0.00046EPSS

CVE•added 2025/05/14 5:15 p.m.•25 views

CVE-2025-44186

SourceCodester Best Employee Management System 1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/Operation/User.php page.

5.4CVSS7AI score0.00021EPSS

CVE•added 2025/05/15 3:16 p.m.•22 views

CVE-2025-44185

SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/change_pass.php via the password parameter.

5.4CVSS7.4AI score0.00021EPSS