Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-25213 | 1 Sherlock | 1 Employee Management System | 2025-05-12 | N/A | 7.2 HIGH |
|
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php.
|
|||||
| CVE-2024-25215 | 1 Sherlock | 1 Employee Management System | 2025-05-08 | N/A | 9.8 CRITICAL |
|
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php.
|
|||||
| CVE-2024-25216 | 1 Sherlock | 1 Employee Management System | 2025-03-13 | N/A | 9.8 CRITICAL |
|
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php.
|
|||||
| CVE-2024-25214 | 1 Sherlock | 1 Employee Management System | 2024-11-21 | N/A | 9.8 CRITICAL |
|
An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html.
|
|||||
| CVE-2024-25212 | 1 Sherlock | 1 Employee Management System | 2024-11-21 | N/A | 7.2 HIGH |
|
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /delete.php.
|
|||||