CVE-2025-14194

Medium CVSS: 5.1

A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /view_personnel.php. The manipulation of the argument per_address/dr_school/other_school leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.

Vendor

Carmelogarcia

Product

Employee Profile Management System

CWE

CWE-79

Yayın Tarihi

2025-12-07 15:15:46

Güncelleme

2025-12-10 17:52:01

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Employee Profile Management System MEDIUM Carmelogarcia 2025

Referanslar

https://code-projects.org/ https://github.com/shenxianyuguitian/employee-management-XSS https://vuldb.com/?ctiid.334614 https://vuldb.com/?id.334614 https://vuldb.com/?submit.699246

Benzer Kayıtlar

Medium

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the fi…

Medium

CVE-2025-14195

A security flaw has been discovered in code-projects Employee Profile Management System 1.0. Impacted is an unknown func…

Medium

CVE-2025-14193

A vulnerability was determined in code-projects Employee Profile Management System 1.0. This vulnerability affects unkno…

Medium

CVE-2025-13396

A weakness has been identified in code-projects Courier Management System 1.0. This affects an unknown function of the f…

Medium

CVE-2025-13302

A vulnerability was identified in code-projects Courier Management System 1.0. This affects an unknown part of the file…

Medium

CVE-2025-13303

A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown fu…