CVE-2026-9418 | code-projects Employee Management System 1.0 /changepassemp.php ID cross site scripting

Inserito da Angelo Barbosa | Mag 24, 2026 | CVE

A vulnerability described as problematic has been identified in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /changepassemp.php. Executing a manipulation of the argument ID can lead to cross site scripting.

This vulnerability appears as CVE-2026-9418. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-9418 | code-projects Employee Management System 1.0 /changepassemp.php ID cross site scripting

Post correlati

CVE-2024-5413 | PhpMyBackupPro 2.3 URL scheduled.php cross site scripting

CVE-2024-0988 | Sichuan Yougou Technology KuERP up to 1.0.4 common.php checklogin App_User_id/App_user_Token improper authentication

CVE-2024-22095 | Intel Server D50DNP PlatformVariableInitDxe Driver input validation (intel-sa-01080)

CVE-2024-34439 | divSpot DS Site Message Plugin up to 1.14.4 on WordPress cross-site request forgery