EUVD-2025-22994

ID: EUVD-2025-22994

Severity: high

CVSS v4: 8.7 (CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

SQL injection vulnerability in Human Resource Management System version 1.0, which allows an attacker to retrieve, create, update and delete databases via the “city” and “state” parameters in the /controller/ccity.php endpoint.

Timestamps

Normalized: 2025-12-31T11:32:18Z UTC
Last updated: 2025-12-31T11:30:03Z UTC

References

No references provided.

VulnAI

EUVD-2025-22994

Description

Timestamps

References