Security Advisory

CVE-2025-13420

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-19 22:32:06

Last updated 2025-11-20 15:40:29

Assigner VulDB

State PUBLISHED

Description

A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

← Browse all CVEs View on cve.org ↗