Filtered by vendor Sherlock Subscriptions
Filtered by product Employee Management System Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-25216 1 Sherlock 1 Employee Management System 2024-11-21 9.8 Critical
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php.
CVE-2024-25215 1 Sherlock 1 Employee Management System 2024-11-21 9.8 Critical
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php.
CVE-2024-25214 1 Sherlock 1 Employee Management System 2024-11-21 9.8 Critical
An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html.
CVE-2024-25213 1 Sherlock 1 Employee Management System 2024-11-21 7.2 High
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php.
CVE-2024-25212 1 Sherlock 1 Employee Management System 2024-11-21 7.2 High
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /delete.php.