CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8567 – itsourcecode Payroll Management System ajax.php sql injection
https://notcve.org/view.php?id=CVE-2024-8567
08 Sep 2024 — A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deductions. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. • https://github.com/ppp-src/ha/issues/8 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8081 – itsourcecode Payroll Management System login.php sql injection
https://notcve.org/view.php?id=CVE-2024-8081
22 Aug 2024 — A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/ppp-src/ha/issues/6 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-37873
https://notcve.org/view.php?id=CVE-2024-37873
09 Jul 2024 — SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System Project In PHP With Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. Vulnerabilidad de inyección SQL en view_payslip.php en el proyecto Itsourcecode Payroll Management System en PHP con código fuente 1.0 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro id. • https://github.com/TThuyyy/cve1/issues/2 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-37831
https://notcve.org/view.php?id=CVE-2024-37831
14 Jun 2024 — Itsourcecode Payroll Management System 1.0 is vulnerable to SQL Injection in payroll_items.php via the ID parameter. Itsourcecode Payroll Management System 1.0 es vulnerable a la inyección SQL en payroll_items.php a través del parámetro ID. • https://github.com/ganzhi-qcy/cve/issues/5 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5898 – itsourcecode Payroll Management System print_payroll.php sql injection
https://notcve.org/view.php?id=CVE-2024-5898
12 Jun 2024 — A vulnerability was found in itsourcecode Payroll Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file print_payroll.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/guiyxli/cve/issues/1 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •