CVE-2025-1160

Name of the Vulnerable Software and Affected Versions SourceCodester Employee Management System version 1.0

Description A critical issue affects some unknown functionality of the file index.php, where the manipulation of the username and password arguments leads to the use of default credentials. This issue can be exploited remotely.

Recommendations For SourceCodester Employee Management System version 1.0, consider changing the default credentials to custom, secure ones to mitigate the risk of exploitation. As a temporary workaround, restrict access to the index.php file until a more permanent solution is available.