Sourcecodester Attendance And Payroll System vulnerabilities

3 known vulnerabilities affecting sourcecodester/attendance_and_payroll_system.

Total CVEs

3

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

MEDIUM3

Vulnerabilities

Page 1 of 1

CVE-2024-10422MEDIUMCVSS 5.3v1.02024-10-27

CVE-2024-10422 [MEDIUM] CWE-89 CVE-2024-10422: A vulnerability, which was classified as critical, has been found in SourceCodester Attendance and P A vulnerability, which was classified as critical, has been found in SourceCodester Attendance and Payroll System 1.0. This issue affects some unknown processing of the file /admin/overtime_add.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be

CVE-2024-10420MEDIUMCVSS 5.3v1.02024-10-27

CVE-2024-10420 [MEDIUM] CWE-434 CVE-2024-10420: A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll Syste A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll System 1.0. This affects the function upload of the file /marimar/guest/update.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be

CVE-2024-10421MEDIUMCVSS 5.3v1.02024-10-27

CVE-2024-10421 [MEDIUM] CWE-89 CVE-2024-10421: A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0 A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. This vulnerability affects unknown code of the file /admin/overtime_row.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.