Human Resource Management CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (7 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-10624	1 Sourcecodester	1 Human Resource Management	2026-06-03	4.3 Medium
A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View Page. Such manipulation of the argument employeeid leads to improper control of resource identifiers. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
CVE-2024-34220	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-18	7.5 High
Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave' parameter.
CVE-2024-34221	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-18	8.8 High
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions resulting in privilege escalation.
CVE-2024-34222	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-18	5.9 Medium
Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the searccountry parameter.
CVE-2024-34223	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-18	4.3 Medium
Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource Management System 1.0 allow attackers to approve or reject leave ticket.
CVE-2024-35468	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-11	5.4 Medium
A SQL injection vulnerability in /hrm/index.php in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.
CVE-2024-35469	2 Oretnom23, Sourcecodester	2 Human Resource Management System, Human Resource Management System	2025-04-11	9.8 Critical
A SQL injection vulnerability in /hrm/user/ in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary SQL commands via the password parameter.

Page 1 of 1.