Filtered by vendor Code-projects
Subscriptions
Filtered by product Employee Profile Management System
Subscriptions
Total
7 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-14285 | 1 Code-projects | 1 Employee Profile Management System | 2025-12-09 | 7.3 High |
| A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file edit_personnel.php. The manipulation of the argument per_id results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used. | ||||
| CVE-2025-14222 | 1 Code-projects | 1 Employee Profile Management System | 2025-12-09 | 6.3 Medium |
| A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /print_personnel_report.php. This manipulation of the argument per_id causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. | ||||
| CVE-2025-14194 | 1 Code-projects | 1 Employee Profile Management System | 2025-12-08 | 3.5 Low |
| A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /view_personnel.php. The manipulation of the argument per_address/dr_school/other_school leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used. | ||||
| CVE-2025-14195 | 1 Code-projects | 1 Employee Profile Management System | 2025-12-08 | 6.3 Medium |
| A security flaw has been discovered in code-projects Employee Profile Management System 1.0. Impacted is an unknown function of the file /profiling/add_file_query.php. The manipulation of the argument per_file results in unrestricted upload. The attack may be launched remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-14193 | 1 Code-projects | 1 Employee Profile Management System | 2025-12-08 | 6.3 Medium |
| A vulnerability was determined in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file /view_personnel.php. Executing manipulation of the argument per_id can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2024-0465 | 1 Code-projects | 1 Employee Profile Management System | 2025-06-16 | 3.5 Low |
| A vulnerability classified as problematic was found in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file download.php. The manipulation of the argument download_file leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be used. VDB-250570 is the identifier assigned to this vulnerability. | ||||
| CVE-2024-0466 | 1 Code-projects | 1 Employee Profile Management System | 2024-11-21 | 5.5 Medium |
| A vulnerability, which was classified as critical, has been found in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file file_table.php. The manipulation of the argument per_id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250571. | ||||
Page 1 of 1.