Employee Management System Security Vulnerabilities and Issues — Employee Management System CVE List

Lucene search

RazormistEmployee Management System

7 matches found

CVE•added 2024/02/26 4:27 p.m.•121 views

CVE-2024-1877

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /cancel.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack can be...

8.8CVSS6.8AI score0.00034EPSS

CVE•added 2024/02/26 4:27 p.m.•118 views

CVE-2024-1878

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /myprofile.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack may be launc...

8.8CVSS6.8AI score0.00046EPSS

CVE•added 2024/02/26 4:27 p.m.•106 views

CVE-2024-1871

A vulnerability, which was classified as problematic, was found in SourceCodester Employee Management System 1.0. Affected is an unknown function of the file /process/assignp.php of the component Project Assignment Report. The manipulation of the argument pname leads to cross site scripting. It is ...

5.4CVSS4AI score0.00078EPSS

CVE•added 2024/02/26 4:27 p.m.•80 views

CVE-2024-1876

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /psubmit.php. The manipulation of the argument pid with the input '+or+1%3d1%23 leads to sql injection. It is possible to launch the attack rem...

9.8CVSS7.5AI score0.0004EPSS

CVE•added 2024/09/22 9:15 a.m.•56 views

CVE-2024-9083

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The e...

5.1CVSS3.8AI score0.00103EPSS

CVE•added 2024/01/29 4:15 p.m.•36 views

CVE-2024-1008

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file edit-photo.php of the component Profile Page. The manipulation leads to unrestricted upload. The attack can be launche...

7.2CVSS7AI score0.00075EPSS

CVE•added 2024/01/29 4:15 p.m.•31 views

CVE-2024-1007

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file edit_profile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The exploi...

7.2CVSS7.3AI score0.00062EPSS