CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-9742

A vulnerability was identified in code-projects Human Resource Integrated System 1.0. This issue affects some unknown processing of the file /login.php. Such manipulation of the argument user/pass leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.9%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

https://code-projects.org/
https://github.com/cooorgi/cve/blob/main/hris_sql_login.md
https://vuldb.com/?ctiid.322041
https://vuldb.com/?id.322041
https://vuldb.com/?submit.640112
https://github.com/cooorgi/cve/blob/main/hris_sql_login.md

Products affected by CVE-2025-9742

Code-Projects » Human Resource Integrated System » Version: 1.0

cpe:2.3:a:code-projects:human_resource_integrated_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-9742

Products

Pricing

Contact Us