ГлавнаяУязвимости → CVE-2025-13421
7.3высокая

CVE-2025-13421

Описание

A security vulnerability has been detected in itsourcecode Human Resource Management System 1.0. Impacted is an unknown function of the file /src/store/NoticeStore.php. Such manipulation of the argument noticeDesc leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Затрагиваемое ПО
Angeljudesuarez Human resource management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/f14g-orz/CVE/issues/9https://itsourcecode.com/https://vuldb.com/?ctiid.332943https://vuldb.com/?id.332943https://vuldb.com/?submit.695953https://github.com/f14g-orz/CVE/issues/9