CVE-2026-5238 | itsourcecode Payroll Management System 1.0 Parameter /view_employee.php ID sql injection

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability was found in itsourcecode Payroll Management System 1.0. It has been declared as critical. Affected by this issue is some unknown functionality of the file /view_employee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability appears as CVE-2026-5238. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-5238 | itsourcecode Payroll Management System 1.0 Parameter /view_employee.php ID sql injection

Post correlati

CVE-2024-36502 | Huawei HarmonyOS/EMUI Audio Module out-of-bounds

CVE-2024-7839 | itsourcecode Billing System 1.0 addbill.php owners_id sql injection

CVE-2023-44001 | Ailand Clinic mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2024-9184 | SendPulse Free Web Push Plugin up to 1.3.6 on WordPress cross site scripting