Show filters
70 Total Results
Displaying 61-70 of 70
Sort by:
Attacker Value
Unknown

CVE-2021-43451

Disclosure Date: December 01, 2021 (last updated February 23, 2025)
SQL Injection vulnerability exists in PHPGURUKUL Employee Record Management System 1.2 via the Email POST parameter in /forgetpassword.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-35427

Disclosure Date: July 20, 2021 (last updated February 23, 2025)
SQL injection vulnerability in PHPGurukul Employee Record Management System 1.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-29215

Disclosure Date: June 15, 2021 (last updated February 22, 2025)
A Cross Site Scripting in SourceCodester Employee Management System 1.0 allows the user to execute alert messages via /Employee Management System/addemp.php on admin account.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2017-17992

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action.
0
0
Attacker Value
Unknown

CVE-2017-17991

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.
0
0
Attacker Value
Unknown

CVE-2017-17994

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request.
0
0
Attacker Value
Unknown

CVE-2017-17995

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.
0
0
Attacker Value
Unknown

CVE-2017-17989

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.
0
0
Attacker Value
Unknown

CVE-2017-17993

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request.
0
0
Attacker Value
Unknown

CVE-2017-17990

Disclosure Date: December 30, 2017 (last updated November 26, 2024)
Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.
0
0
View More Topics  < Previous