CVE-2025-1905 | SourceCodester Employee Management System 1.0 employee.php Full Name cross site scripting

Inserito da Angelo Barbosa | Mar 3, 2025 | CVE

A vulnerability, which was classified as problematic, was found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file employee.php. The manipulation of the argument Full Name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-1905. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-1905 | SourceCodester Employee Management System 1.0 employee.php Full Name cross site scripting

Post correlati

CVE-2024-53846 | erlang otp up to 25.3.2.16/26.2.5.6/27.1.3 certificate validation

CVE-2024-48545 | IVY Smart 4.5.0 Firmware Update information disclosure

CVE-2023-49798 | OpenZeppelin openzeppelin-contracts 4.9.4 Subcall control flow (GHSA-699g-q6qh-q4v8)

CVE-2024-8877 | Riello Netman 204 up to 4.05 sql injection