debashish-choudhury/staff-appraisal-system

Releases0

Stars3

An online portal for college where institute can perform the appraisal and evaluation process.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-42915 ↗	Aug 23, 2024Friday, 23 August 2024, 15:15	8 HIGH	—
A host header injection vulnerability in Staff Appraisal System v1.0 allows attackers to obtain the password reset token via user interaction with a crafted password reset link. This will allow attackers to arbitrarily reset other users' passwords and compromise their accounts.