Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Simple Payroll System With Dynamic Tax Bracket Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-1113 1 Simple Payroll System With Dynamic Tax Bracket Project 1 Simple Payroll System With Dynamic Tax Bracket 2023-03-09 N/A 4.8 MEDIUM
A vulnerability was found in SourceCodester Simple Payroll System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file admin/?page=admin of the component POST Parameter Handler. The manipulation of the argument fullname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222073 was assigned to this vulnerability.
CVE-2021-42169 1 Simple Payroll System With Dynamic Tax Bracket Project 1 Simple Payroll System With Dynamic Tax Bracket 2021-12-03 7.5 HIGH 9.8 CRITICAL
The Simple Payroll System with Dynamic Tax Bracket in PHP using SQLite Free Source Code (by: oretnom23 ) is vulnerable from remote SQL-Injection-Bypass-Authentication for the admin account. The parameter (username) from the login form is not protected correctly and there is no security and escaping from malicious payloads.