A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /cancel.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254725 was assigned to this vulnerability.
History

Mon, 23 Dec 2024 17:00:00 +0000

Type Values Removed Values Added
First Time appeared Razormist
Razormist employee Management System
CPEs cpe:2.3:a:mayuri_k:employee_management_system:1.0:*:*:*:*:*:*:* cpe:2.3:a:razormist:employee_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Mayuri K
Mayuri K employee Management System
Razormist
Razormist employee Management System

Tue, 10 Dec 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Mayuri K
Mayuri K employee Management System
CPEs cpe:2.3:a:mayuri_k:employee_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Mayuri K
Mayuri K employee Management System

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-02-26T01:00:06.568Z

Updated: 2024-08-08T20:55:11.901Z

Reserved: 2024-02-25T18:30:05.210Z

Link: CVE-2024-1877

cve-icon Vulnrichment

Updated: 2024-08-01T18:56:22.469Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-26T16:27:54.240

Modified: 2024-12-23T16:32:19.787

Link: CVE-2024-1877

cve-icon Redhat

No data.