CVE-2026-9451 | code-projects Employee Management System 1.0 applyleaveprocess.php ID sql injection

Inserito da Angelo Barbosa | Mag 24, 2026 | CVE

A vulnerability has been found in code-projects Employee Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /process/applyleaveprocess.php. This manipulation of the argument ID causes sql injection.

This vulnerability is handled as CVE-2026-9451. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-9451 | code-projects Employee Management System 1.0 applyleaveprocess.php ID sql injection

Post correlati

CVE-2025-8041 | Mozilla Firefox up to 140 on Android Address Bar clickjacking

CVE-2025-1738 | TrivisionSecurity Trivision Camera NC227WF up to 5.7.x get request method with sensitive query strings

CVE-2024-34763 | Tobias Conrad ReviewShort Plugin up to 1.01.5 on WordPress authorization

CVE-2024-9111 | pickplugins Product Designer Plugin up to 1.0.35 on WordPress SVG File Upload cross site scripting