CVE-2022-3496
SourceCodester Human Resource Management System Admin Panel employeeadd.php access control
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability was found in SourceCodester Human Resource Management System 1.0 and classified as critical. This issue affects some unknown processing of the file employeeadd.php of the component Admin Panel. The manipulation leads to improper access controls. The attack may be initiated remotely. The identifier VDB-210785 was assigned to this vulnerability.
Se ha encontrado una vulnerabilidad en SourceCodester Human Resource Management System versión 1.0 y ha sido clasificada como crítica. Este problema afecta a un procesamiento desconocido del archivo employeeadd.php del componente Admin Panel. La manipulación conlleva a un control de acceso inapropiado. El ataque puede ser iniciado de forma remota. El identificador VDB-210785 ha sido asignado a esta vulnerabilidad
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-10-13 CVE Reserved
- 2022-10-14 CVE Published
- 2024-05-06 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-266: Incorrect Privilege Assignment
CAPEC
References (0)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oretnom23 Search vendor "Oretnom23" | Human Resource Management System Search vendor "Oretnom23" for product "Human Resource Management System" | 1.0 Search vendor "Oretnom23" for product "Human Resource Management System" and version "1.0" | - |
Affected
| ||||||