Attendance And Payroll System Project Attendance And Payroll System vulnerabilities
17 known vulnerabilities affecting attendance_and_payroll_system_project/attendance_and_payroll_system.
Total CVEs
17
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH15
Vulnerabilities
Page 1 of 1
CVE-2021-44087P2CRITICALCVSS 9.8v1.02022-03-17
CVE-2021-44087 [CRITICAL] CVE-2021-44087: A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows an unauthenticated remote attacker to upload a maliciously crafted PHP via photo upload.
nvd
CVE-2021-44088P3CRITICALCVSS 9.8v1.02022-03-17
CVE-2021-44088 [CRITICAL] CWE-89 CVE-2021-44088: An SQL Injection vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which all
An SQL Injection vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows a remote attacker to bypass authentication via unsanitized login parameters.
nvd
CVE-2022-28006P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28006 [HIGH] CWE-89 CVE-2022-28006: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\employee_delete.php.
nvd
CVE-2022-28018P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28018 [HIGH] CWE-89 CVE-2022-28018: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\schedule_edit.php.
nvd
CVE-2022-28017P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28017 [HIGH] CWE-89 CVE-2022-28017: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\overtime_edit.php.
nvd
CVE-2022-28019P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28019 [HIGH] CWE-89 CVE-2022-28019: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\employee_edit.php.
nvd
CVE-2022-28014P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28014 [HIGH] CWE-89 CVE-2022-28014: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\attendance_edit.php.
nvd
CVE-2022-28013P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28013 [HIGH] CWE-89 CVE-2022-28013: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\schedule_employee_edit.php.
nvd
CVE-2022-28012P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28012 [HIGH] CWE-89 CVE-2022-28012: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\position_delete.php.
nvd
CVE-2022-28015P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28015 [HIGH] CWE-89 CVE-2022-28015: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\cashadvance_edit.php.
nvd
CVE-2022-28009P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28009 [HIGH] CWE-89 CVE-2022-28009: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\attendance_delete.php.
nvd
CVE-2022-28011P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28011 [HIGH] CWE-89 CVE-2022-28011: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\schedule_delete.php.
nvd
CVE-2022-28010P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28010 [HIGH] CWE-89 CVE-2022-28010: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\overtime_delete.php.
nvd
CVE-2022-28008P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28008 [HIGH] CWE-89 CVE-2022-28008: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\attendance_delete.php.
nvd
CVE-2022-28020P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28020 [HIGH] CWE-89 CVE-2022-28020: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\position_edit.php.
nvd
CVE-2022-28007P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28007 [HIGH] CWE-89 CVE-2022-28007: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\cashadvance_delete.php.
nvd
CVE-2022-28016P3HIGHCVSS 8.8v1.02022-04-21
CVE-2022-28016 [HIGH] CWE-89 CVE-2022-28016: Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the c
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\deduction_edit.php.
nvd