Oretnom23 Human Resource Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Oretnom23 Human Resource Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2025-40682 — CVSS 9.8 (critical): SQL injection vulnerability in Human Resource Management System version 1.0, which allows an attacker to retrieve, create, update and…
CVE-2024-35469 — CVSS 9.8 (critical): A SQL injection vulnerability in /hrm/user/ in SourceCodester Human Resource Management System 1.0 allows attackers to execute arbitrary…
CVE-2022-43262 — CVSS 9.8 (critical): Human Resource Management System v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at…
CVE-2024-34221 — CVSS 8.8 (high): Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions resulting in privilege escalation.
CVE-2022-43318 — CVSS 8.8 (high): Human Resource Management System v1.0 was discovered to contain a SQL injection vulnerability via the stateedit parameter at /hrm/state.php.
CVE-2024-34220 — CVSS 7.5 (high): Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave' parameter.
CVE-2022-4273 — CVSS 7.3 (high): A vulnerability, which was classified as critical, has been found in SourceCodester Human Resource Management System 1.0. This issue…
CVE-2022-3496 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Human Resource Management System 1.0 and classified as critical. This issue affects some…
CVE-2022-3470 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Human Resource Management System. It has been classified as critical. Affected is an unknown…
CVE-2022-3471 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Human Resource Management System. It has been declared as critical. Affected by this…
CVE-2023-3391 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Human Resource Management System 1.0. It has been declared as critical. This vulnerability…
CVE-2022-3472 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Human Resource Management System. It has been rated as critical. Affected by this issue is some…
CVE-2022-3473 — CVSS 6.3 (medium): A vulnerability classified as critical has been found in SourceCodester Human Resource Management System. This affects an unknown part of…
CVE-2022-3492 — CVSS 6.3 (medium): A vulnerability classified as critical was found in SourceCodester Human Resource Management System 1.0. This vulnerability affects unknown…
CVE-2022-3458 — CVSS 6.3 (medium): A vulnerability has been found in SourceCodester Human Resource Management System 1.0 and classified as critical. Affected by this…
CVE-2025-40686 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute…
CVE-2022-43317 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in /hrm/index.php?msg of Human Resource Management System v1.0 allows attackers to execute…
CVE-2022-45218 — CVSS 6.1 (medium): Human Resource Management System v1.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability. This vulnerability is…
CVE-2025-40683 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute…
CVE-2025-40684 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute…
CVE-2025-40685 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute…
CVE-2024-34222 — CVSS 5.9 (medium): Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the searccountry parameter.
CVE-2024-35468 — CVSS 5.4 (medium): A SQL injection vulnerability in /hrm/index.php in SourceCodester Human Resource Management System 1.0 allows attackers to execute…
CVE-2022-4278 — CVSS 4.7 (medium): A vulnerability was found in SourceCodester Human Resource Management System 1.0. It has been rated as critical. This issue affects some…
CVE-2024-34223 — CVSS 4.3 (medium): Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource Management System 1.0 allow attackers to…
CVE-2022-3493 — CVSS 3.5 (low): A vulnerability, which was classified as problematic, has been found in SourceCodester Human Resource Management System 1.0. This issue…
CVE-2022-4279 — CVSS 3.5 (low): A vulnerability classified as problematic has been found in SourceCodester Human Resource Management System 1.0. Affected is an unknown…
CVE-2022-3497 — CVSS 3.5 (low): A vulnerability was found in SourceCodester Human Resource Management System 1.0. It has been classified as problematic. Affected is an…
CVE-2022-3502 — CVSS 3.5 (low): A vulnerability was found in Human Resource Management System 1.0. It has been classified as problematic. This affects an unknown part of…