CVE-2025-44185 | THREATINT

Description

SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/change_pass.php via the password parameter.

PUBLISHED Reserved 2025-04-22 | Published 2025-05-15 | Updated 2025-05-19 | Assigner mitre

References

www.sourcecodester.com/...mployee-management-system-php.html

www.sourcecodester.com/...load/mayuri_k/_hr_soft_updated.zip

github.com/...nagement-System-1.0-CSRF-in-Password-Change.md

cve.org (CVE-2025-44185)

nvd.nist.gov (CVE-2025-44185)

Download JSON