CNNVD-202508-3129 Information

Aug 26, 2025 cve

CNNVD ID

CNNVD-202508-3129

CVE-2025-9476

CNNVD Published: 2025-08-26

Description (Chinese)

SourceCodester Human Resource Information System是SourceCodester开源的一个人力资源信息系统。 SourceCodester Human Resource Information System 1.0版本存在安全漏洞，该漏洞源于对文件/Superadmin_Dashboard/process/editemployee_process.php中参数employee_file201的错误操作导致任意文件上传。

Description (English)

SourceCodester Human Resources Information System is an open-source human resources information system. The security loophole in version 1.0 of SourceCodester Human Resources Information System stems from the mishandling of the parameter employee file201 in the document/Superadmin Dashboard/process/editemploye process.php.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-08-26

Last Modified

2026-02-24

References

https://www.sourcecodester.com/ https://vuldb.com/?submit.634757 https://vuldb.com/?id.321345 https://vuldb.com/?ctiid.321345 https://github.com/lrjbsyh/CVE_Hunter/issues/5#issue-3322736605 https://nvd.nist.gov/vuln/detail/CVE-2025-9476

Share on: