Human Resource Management System Security Vulnerabilities and Issues — Human Resource Management System CVE List

Lucene search

Oretnom23Human Resource Management System

6 matches found

CVE•added 2024/05/14 3:38 p.m.•95 views

CVE-2024-34221

Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions resulting in privilege escalation.

8.8CVSS6.8AI score0.00176EPSS

CVE•added 2024/05/30 6:15 p.m.•65 views

CVE-2024-35468

A SQL injection vulnerability in /hrm/index.php in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.

5.4CVSS8.7AI score0.0009EPSS

Web

CVE•added 2024/05/30 6:15 p.m.•65 views

CVE-2024-35469

A SQL injection vulnerability in /hrm/user/ in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.

9.8CVSS8.7AI score0.00536EPSS

Web

CVE•added 2024/05/14 3:38 p.m.•57 views

CVE-2024-34223

Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource Management System 1.0 allow attackers to approve or reject leave ticket.

4.3CVSS6.8AI score0.00187EPSS

CVE•added 2024/05/14 3:38 p.m.•42 views

CVE-2024-34222

Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the searccountry parameter.

5.9CVSS8.1AI score0.00043EPSS

CVE•added 2024/05/14 3:38 p.m.•25 views

CVE-2024-34220

Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave' parameter.

7.5CVSS8.1AI score0.00311EPSS