Code Projects Employee Profile Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Code Projects Employee Profile Management System.
By the Year
In 2026 there have been 0 vulnerabilities in Code Projects Employee Profile Management System. Last year, in 2025 Employee Profile Management System had 5 security vulnerabilities published. Right now, Employee Profile Management System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 5 | 5.94 |
| 2024 | 2 | 7.55 |
It may take a day or so for new Employee Profile Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Code Projects Employee Profile Management System Security Vulnerabilities
SQLi in code-projects Employee Profile Management System 1.0 edit_personnel.php
CVE-2025-14285
7.3 - High
- December 09, 2025
A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file edit_personnel.php. The manipulation of the argument per_id results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.
SQL Injection
SQLi in print_personnel_report.php of Employee Profile Mgt System 1.0
CVE-2025-14222
6.3 - Medium
- December 08, 2025
A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /print_personnel_report.php. This manipulation of the argument per_id causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used.
SQL Injection
Unrestricted Upload in Code-Projects Emp. Profile Mgt 1.0 - add_file_query.php
CVE-2025-14195
6.3 - Medium
- December 07, 2025
A security flaw has been discovered in code-projects Employee Profile Management System 1.0. Impacted is an unknown function of the file /profiling/add_file_query.php. The manipulation of the argument per_file results in unrestricted upload. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.
Unrestricted File Upload
XSS in Employee Profile Mgmt Sys 1.0 via /view_personnel.php
CVE-2025-14194
3.5 - Low
- December 07, 2025
A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /view_personnel.php. The manipulation of the argument per_address/dr_school/other_school leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.
XSS
SQL Injection in code-projects Employee Profile Mgmt Sys 1.0 /view_personnel.php
CVE-2025-14193
6.3 - Medium
- December 07, 2025
A vulnerability was determined in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file /view_personnel.php. Executing a manipulation of the argument per_id can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.
SQL Injection
SQLi via per_id in file_table.php of EPM 1.0
CVE-2024-0466
9.8 - Critical
- January 12, 2024
A vulnerability, which was classified as critical, has been found in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file file_table.php. The manipulation of the argument per_id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250571.
SQL Injection
Path Traversal in Employee Profile Mgmt Sys 1.0 download.php (download_file)
CVE-2024-0465
5.3 - Medium
- January 12, 2024
A vulnerability classified as problematic was found in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file download.php. The manipulation of the argument download_file leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be used. VDB-250570 is the identifier assigned to this vulnerability.
Path Traversal: '../filedir'
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Code Projects Employee Profile Management System or by Code Projects? Click the Watch button to subscribe.
