CVE-2026-11509 | CodeAstro Leave Management System 1.0 search_staff_for_updation.php Name sql injection

Inserito da Angelo Barbosa | Giu 7, 2026 | CVE

A vulnerability was found in CodeAstro Leave Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/search_staff_for_updation.php. Such manipulation of the argument Name leads to sql injection.

This vulnerability is listed as CVE-2026-11509. The attack may be performed from remote. There is no available exploit.

CVE-2026-11509 | CodeAstro Leave Management System 1.0 search_staff_for_updation.php Name sql injection

Post correlati

CVE-2024-22277 | VMware Cloud Director Availability up to 4.7.1 cross site scripting

CVE-2024-0627 | Custom Field Template Plugin up to 2.6.1 on WordPress Custom Field Name cross site scripting

CVE-2025-13686 | IBM DataStage on Cloud Pak for Data up to 5.3.0 os command injection

CVE-2023-34061 | Cloud Foundry Routing Release/CF Deployment denial of service