CVE-2025-26258
- EPSS 0.02%
- Veröffentlicht 26.09.2025 17:15:36
- Zuletzt bearbeitet 06.11.2025 22:19:59
Sourcecodester Employee Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via 'Add Designation.'
CVE-2025-57117
- EPSS 0.05%
- Veröffentlicht 15.09.2025 00:00:00
- Zuletzt bearbeitet 18.09.2025 16:48:43
A Clickjacking vulnerability exists in Rems' Employee Management System 1.0. This flaw allows remote attackers to execute arbitrary JavaScript on the department.php page by injecting a malicious payload into the Department Name field under Add Depart...
CVE-2025-29719
- EPSS 0.18%
- Veröffentlicht 02.04.2025 21:15:32
- Zuletzt bearbeitet 10.04.2025 14:27:50
SourceCodester (rems) Employee Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in add_employee.php via the First Name and Address text fields.
CVE-2025-1905
- EPSS 0.1%
- Veröffentlicht 04.03.2025 05:15:14
- Zuletzt bearbeitet 06.03.2025 12:17:33
A vulnerability, which was classified as problematic, was found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file employee.php. The manipulation of the argument Full Name leads to cross site scripting. It is p...
CVE-2025-1160
- EPSS 0.21%
- Veröffentlicht 10.02.2025 23:15:15
- Zuletzt bearbeitet 03.03.2025 16:52:20
A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument username/password leads to use of ...