CVE-2022-38303
The CVE-2022-38303 issue affects Online Leave Management System v1.0. A SQL injection vulnerability exists in the id parameter of the /employees/manage_leave_type.php endpoint, enabling potentially unauthorized data access or modification. Root cause: improper handling/sanitization of user-suppli...