CVE-2026-5237 | itsourcecode Payroll Management System 1.0 Parameter /manage_user.php ID sql injection

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability was found in itsourcecode Payroll Management System 1.0. It has been classified as critical. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter Handler. Performing a manipulation of the argument ID results in sql injection.

This vulnerability is reported as CVE-2026-5237. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-5237 | itsourcecode Payroll Management System 1.0 Parameter /manage_user.php ID sql injection

Post correlati

CVE-2024-3413 | SourceCodester Human Resource Information System 1.0 login_process.php hr_email/hr_password sql injection

CVE-2025-11663 | Campcodes Online Beauty Parlor Management System 1.0 manage-services.php sername sql injection

CVE-2024-11100 | 1000 Projects Beauty Parlour Management System 1.0 /index.php name sql injection

CVE-2024-11344 | Lexmark CX/XC/CS/MS/MX/XM Postscript Interpreter type confusion