Unrated severityNVD Advisory· Published May 16, 2025· Updated May 16, 2025

code-projects Employee Record System edit_employee.php cross site scripting

CVE-2025-4744

Description

A vulnerability, which was classified as problematic, has been found in code-projects Employee Record System 1.0. Affected by this issue is some unknown functionality of the file dashboard\edit_employee.php. The manipulation of the argument employeed_id/first_name/middle_name/last_name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Affected products

Employee Records System/Employee Records Systemllm-fuzzy
Range: =1.0
code-projects/Employee Record Systemv5
Range: 1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/872323857/CVE/blob/main/employee-record-system-xss1.pdfmitreexploit
vuldb.commitrethird-party-advisory
code-projects.orgmitreproduct
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000