PT-2026-42990 · Code Projects · Employee Management System
Ssl_Seven_Security_Lab_Wangzhiqiang_Zhanxiuchen
·
Published
2026-05-25
·
Updated
2026-05-25
·
CVE-2026-9415
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
A weakness has been identified in code-projects Employee Management System 1.0. This affects an unknown function of the file /eloginwel.php. This manipulation of the argument ID causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.
Exploit
Code Injection
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Employee Management System