Vulnerabilities > Sherlock > Employee Management System
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-14 | CVE-2024-25212 | SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /delete.php. | 7.2 |
| 2024-02-14 | CVE-2024-25213 | SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php. | 7.2 |
| 2024-02-14 | CVE-2024-25214 | SQL Injection vulnerability in Sherlock Employee Management System 1.0 An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html. | 9.8 |
| 2024-02-14 | CVE-2024-25215 | SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php. | 9.8 |
| 2024-02-14 | CVE-2024-25216 | SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php. | 9.8 |