2 matches found
CVE-2022-41355
Online Leave Management System v1.0 contains a SQL injection vulnerability. The flaw is in the delete_department path (/Master.php?f=delete_department) where the id parameter is used in SQL statements without proper validation. This can allow an attacker to manipulate queries and potentially acce...
CVE-2022-41355
Online Leave Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /leavesystem/classes/Master.php?f=deletedepartment...