Employee Management System@1.0 Security Vulnerabilities and Issues — Employee Management System@1.0 CVE List

Lucene search

Walterjnr1Employee Management System1.0

5 matches found

CVE•added 2024/02/23 8:15 p.m.•68 views

CVE-2024-1833

A vulnerability was found in SourceCodester Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /Account/login.php. The manipulation of the argument txtusername/txtphone leads to sql injection. The attack may be launched remote...

9.8CVSS7.6AI score0.00053EPSS

CVE•added 2024/03/12 8:15 a.m.•52 views

CVE-2024-25325

SQL injection vulnerability in Employee Management System v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to the txtemail parameter in the login.php.

7.1CVSS6.8AI score0.00047EPSS

CVE•added 2024/03/19 8:15 p.m.•50 views

CVE-2024-28595

SQL Injection vulnerability in Employee Management System v1.0 allows attackers to run arbitrary SQL commands via the admin_id parameter in update-admin.php.

9.8CVSS8.2AI score0.00534EPSS

CVE•added 2024/03/12 3:15 p.m.•48 views

CVE-2024-2394

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Admin/add-admin.php. The manipulation of the argument avatar leads to unrestricted upload. The attack may be launched remotely...

9.8CVSS4.8AI score0.0009EPSS

CVE•added 2024/03/21 2:52 a.m.•20 views

CVE-2024-25239

SQL Injection vulnerability in Sourcecodester Employee Management System v1.0 allows attackers to run arbitrary SQL commands via crafted POST request to /emloyee_akpoly/Account/login.php.

9.8CVSS8.2AI score0.00108EPSS