CVE-2025-13420 | itsourcecode Human Resource Management System 1.0 EventStore.php eventSubject sql injection

A vulnerability was found in itsourcecode Human Resource Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection.

This vulnerability is handled as CVE-2025-13420. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More