CVE-2017-14848

WPHRM Human Resource Management System for WordPress 1.0 allows SQL Injection via the employee_id parameter.
References
Link Resource
https://www.exploit-db.com/exploits/42924/ Exploit Third Party Advisory VDB Entry
https://wpvulndb.com/vulnerabilities/8929 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:dasinfomedia:wphrm_human_resource_management_system:1.0:*:*:*:*:wordpress:*:*

Information

Published : 2017-10-02 18:29

Updated : 2019-12-11 15:35


NVD link : CVE-2017-14848

Mitre link : CVE-2017-14848


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

dasinfomedia

  • wphrm_human_resource_management_system