CVE-2026-37597 | SourceCodester Online Employees Work from Home Attendance System 1.0 attendance_list.php sql injection

Inserito da Angelo Barbosa | Apr 14, 2026 | CVE

A vulnerability has been found in SourceCodester Online Employees Work from Home Attendance System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /wfh_attendance/admin/attendance_list.php. This manipulation causes sql injection.

This vulnerability is registered as CVE-2026-37597. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-37597 | SourceCodester Online Employees Work from Home Attendance System 1.0 attendance_list.php sql injection

Post correlati

CVE-2026-5578 | CodeAstro Online Classroom 1.0 Parameter addassessment.php deleteid sql injection

CVE-2025-13119 | Fabian Ros/SourceCodester Simple E-Banking System 1.0 cross-site request forgery

CVE-2026-4108 | Zoho ManageEngine Exchange Reporter Plus up to 5801 Non-Owner Mailbox Permission Report cross site scripting

CVE-2024-11021 | Grand Vice Info Webopac up to 6.5.2/7.2.0 cross site scripting