{"id":7722,"date":"2025-07-07T06:49:57","date_gmt":"2025-07-07T06:49:57","guid":{"rendered":"http:\/\/localhost\/?p=7722"},"modified":"2025-07-07T06:49:57","modified_gmt":"2025-07-07T06:49:57","slug":"itsourcecode-employee-management-system-editempeducationphp-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7722","title":{"rendered":"itsourcecode Employee Management System editempeducation.php sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nitsourcecode Employee Management System editempeducation.php sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-07T11:02:05.883Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-07T11:02:05.883Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nitsourcecode<\/td>\n<\/tr>\n
Product<\/th>\nEmployee Management System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA SQL injection vulnerability was discovered in the Employee Management System (version 1.0) by itsourcecode. This vulnerability affects the education module, allowing remote attackers to inject SQL code via the coursepg argument in editempeducation.php.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\nitsourcecode<\/td>\n<\/tr>\n
AI Product<\/th>\nEmployee Management System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n