CVE-2026-11510

A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknown part of the file /admin/addleave.php. Performing a manipulation of the argument typeofleave results in sql injection. It is possible to initiate the attack remotely. The exploit has been released...

CVE-2026-11510

A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknown part of the file /admin/addleave.php. Performing a manipulation of the argument typeofleave results in sql injection. It is possible to initiate the attack remotely. The exploit has been released...

CodeAstro Leave Management System 注入漏洞

The CodeAstro Leave Management System is a leave management system developed by CodeAstro Inc. Version 1.0 of the CodeAstro Leave Management System has a SQL injection vulnerability, which stems from the handling of the typeofleave parameter in the file/admin/addleave.php. Attackers can launch...

CVE-2024-34220

Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave' parameter...

CVE-2024-34220

CVE-2024-34220 affects Sourcecodester Human Resource Management System 1.0 and is described as a SQL Injection via the 'leave' parameter. Public PoC/exploit code exists (e.g., on GitHub), showing parameterized input being unsafely handled and allowing sleep-based timing tricks. Red Hat/PT-Securit...

PT-2024-25750 · Sourcecodester · Sourcecodester Human Resource Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Human Resource Management System version 1.0 Description: The issue allows for SQL Injection via the leave parameter. Recommendations: For version 1.0, avoid using the leave parameter in affected API endpoints until the issue i...