SourceCodester Human Resource Management Employee View detailview.php resource injection

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View Page. Such manipulation of the argument employeeid leads to improper control of resource identifiers. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

Basic Information

ID CVE-2026-10624

Source VulDB

Published Jun 2, 2026 at 20:30

Affected Product

Vendor SourceCodester

Product Human Resource Management

Version 1.0

Affected Versions SourceCodester Human Resource Management 1.0

CWE Classification

CWE-99

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View Page. Such manipulation of the argument employeeid leads to improper control of resource identifiers. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.",
    "published": "2026-06-02T20:30:10.773Z",
    "modified": "2026-06-02T20:30:10.773Z",
    "type": "cve",
    "title": "SourceCodester Human Resource Management Employee View detailview.php resource injection",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/367929\nhttps://vuldb.com/vuln/367929/cti\nhttps://vuldb.com/cve/CVE-2026-10624\nhttps://vuldb.com/submit/829766\nhttps://r4sh7n.medium.com/insecure-direct-object-reference-idor-vulnerability-in-employee-management-functionality-70df8ac5b1d3?postPublishedType=repub\nhttps://www.sourcecodester.com/",
    "id": "CVE-2026-10624",
    "bulletinFamily": "",
    "cwe": [
        "CWE-99"
    ],
    "cvelist": null,
    "sourceData": "SourceCodester Human Resource Management 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Human Resource Management",
    "version": "1.0",
    "vendor": "SourceCodester",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

SourceCodester Human Resource Management Employee View detailview.php resource injection_CVE-2026-10624