SourceCodester Human Resource Management System Admin Panel employeeadd.php access control
CVE-2022-3496

6.3MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Human Resource Management System
Vendor: CVE Published:; 14 October 2022

🔔 Create Sourcecodester Vulnerability Alert

What is CVE-2022-3496?

A vulnerability was found in SourceCodester Human Resource Management System 1.0 and classified as critical. This issue affects some unknown processing of the file employeeadd.php of the component Admin Panel. The manipulation leads to improper access controls. The attack may be initiated remotely. The identifier VDB-210785 was assigned to this vulnerability.

Affected Version(s)

Human Resource Management System 1.0

References

https://vuldb.com/?id.210785

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2022
Vulnerability Reserved
Oct 13, 2022