Vulnerabilities > Attendance AND Payroll System Project > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-17 | CVE-2021-44087 | Unspecified vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows an unauthenticated remote attacker to upload a maliciously crafted PHP via photo upload. | 9.8 |
| 2022-03-17 | CVE-2021-44088 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 An SQL Injection vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows a remote attacker to bypass authentication via unsanitized login parameters. | 9.8 |