Biometric Shift Employee Management System
Products
1- 7 CVEs
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-17992 | Cri | 0.64 | 9.8 | 0.02 | Dec 30, 2017 | Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action. | ||
| CVE-2017-17990 | Hig | 0.57 | 8.8 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action. | ||
| CVE-2017-17995 | Med | 0.35 | 5.4 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request. | ||
| CVE-2017-17994 | Med | 0.35 | 5.4 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request. | ||
| CVE-2017-17993 | Med | 0.35 | 5.4 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request. | ||
| CVE-2017-17991 | Med | 0.35 | 5.4 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request. | ||
| CVE-2017-17989 | Med | 0.35 | 5.4 | 0.01 | Dec 30, 2017 | Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action. |
- risk 0.64cvss 9.8epss 0.02
Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action.
- risk 0.57cvss 8.8epss 0.01
Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.
- risk 0.35cvss 5.4epss 0.01
Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.
- risk 0.35cvss 5.4epss 0.01
Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request.
- risk 0.35cvss 5.4epss 0.01
Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request.
- risk 0.35cvss 5.4epss 0.01
Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.
- risk 0.35cvss 5.4epss 0.01
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.