Human Resource Management System CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Sourcecodester Subscriptions

Filtered by product Human Resource Management System Subscriptions

Search

Switch to Advanced Search (Beta)

Total 6 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-35469	1 Sourcecodester	1 Human Resource Management System	2025-02-13	9.8 Critical
A SQL injection vulnerability in /hrm/user/ in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.
CVE-2024-35468	1 Sourcecodester	1 Human Resource Management System	2025-02-13	5.4 Medium
A SQL injection vulnerability in /hrm/index.php in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.
CVE-2024-34223	1 Sourcecodester	1 Human Resource Management System	2025-02-13	4.3 Medium
Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource Management System 1.0 allow attackers to approve or reject leave ticket.
CVE-2024-34222	1 Sourcecodester	1 Human Resource Management System	2025-02-13	5.9 Medium
Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the searccountry parameter.
CVE-2024-34221	1 Sourcecodester	1 Human Resource Management System	2025-02-13	8.8 High
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions resulting in privilege escalation.
CVE-2024-34220	1 Sourcecodester	1 Human Resource Management System	2025-02-13	7.5 High
Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave' parameter.

Page 1 of 1.