CVE-2026-3812 | itsourcecode Payroll Management System 1.0 manage_employee_allowances.php ID cross site scripting

Inserito da Angelo Barbosa | Mar 8, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in itsourcecode Payroll Management System 1.0. Affected is an unknown function of the file /manage_employee_allowances.php. This manipulation of the argument ID causes cross site scripting.

This vulnerability is tracked as CVE-2026-3812. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-3812 | itsourcecode Payroll Management System 1.0 manage_employee_allowances.php ID cross site scripting

Post correlati

CVE-2025-8108 | Axis AXIS OS up to 12.7.32 ACAP Configuration File improper validation of specified type of input

CVE-2026-2469 | directorytree imapengine up to 1.22.2 Downstream ImapConnection.php id injection

CVE-2023-40290 | Supermicro X11SSM-F/X11SAE-F/X11SSE-F 1.66 on Windows cross site scripting

CVE-2023-46387 | LOYTEC LINX-151/LINX-212 File Download API dpal_config.zml information disclosure