← Back

Employee Records System

employee_records_system

Vendor: Employee Records System Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-20183
1Employee Records System Project
1Employee Records System
Jun 17, 2026
Jan 9, 2020
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
uploadimage.php in Employee Records System 1.0 allows upload and execution of arbitrary PHP code because file-extension validation is only on the client side. The attacker can modify global.js to allow the .php extension...Show more
uploadimage.php in Employee Records System 1.0 allows upload and execution of arbitrary PHP code because file-extension validation is only on the client side. The attacker can modify global.js to allow the .php extension.Show less