Online Project Time Management System

online_project_time_management_system

Vendor: Online Project Time Management System Project • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-26627 1Online Project Time Management System Project 1Online Project Time Management System Jun 17, 2026 Apr 7, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Online Project Time Management System v1.0 was discovered to contain an arbitrary file write vulnerability which allows attackers to execute arbitrary code via a crafted HTML file.
CVE-2022-26295 1Online Project Time Management System Project 1Online Project Time Management System Jun 17, 2026 Mar 16, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A stored cross-site scripting (XSS) vulnerability in /ptms/?page=user of Online Project Time Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user n...Show more A stored cross-site scripting (XSS) vulnerability in /ptms/?page=user of Online Project Time Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user name field.Show less
CVE-2022-26293 1Online Project Time Management System Project 1Online Project Time Management System Jun 17, 2026 Mar 16, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Online Project Time Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the function save_employee at /ptms/classes/Users.php.
CVE-2021-46451 1Online Project Time Management System Project 1Online Project Time Management System Jun 17, 2026 Jan 24, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An SQL Injection vulnerabilty exists in Sourcecodester Online Project Time Management System 1.0 via the pid parameter in the load_file function.