CVE-2025-57117

Medium CVSS: 5.4

A Clickjacking vulnerability exists in Rems' Employee Management System 1.0. This flaw allows remote attackers to execute arbitrary JavaScript on the department.php page by injecting a malicious payload into the Department Name field under Add Department.

Vendor

Remyandrade

Product

Employee Management System

CWE

CWE-79

Yayın Tarihi

2025-09-15 22:15:34

Güncelleme

2025-09-18 16:48:43

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-79 Employee Management System MEDIUM Remyandrade 2025

Referanslar

http://employee.com https://github.com/Jazeye/CVE/blob/main/CVE-2025-57117/README.md https://www.sourcecodester.com/ https://github.com/Jazeye/CVE/blob/main/CVE-2025-57117/README.md

Benzer Kayıtlar

Medium

CVE-2026-3695

A vulnerability has been found in SourceCodester Modern Image Gallery App 1.0. Impacted is an unknown function of the fi…

Medium

CVE-2026-3302

A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this issue is some unknown f…

Medium

CVE-2026-3163

A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function fil…

Medium

CVE-2026-3070

A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknow…

Critical

CVE-2025-70457

A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/up…

Medium

CVE-2025-70458

A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sou…