Lllyyy123

Name of the Vulnerable Software and Affected Versions itsourcecode sanitize or validate this input version 1.0 Description A flaw exists due to improper input sanitization or validation in itsourcecode sanitize or validate this input version 1.0. This issue affects an unknown function within the `/borrowedequip.php` file of the Parameter Handler component. Manipulation of the `emp id` argument can lead to SQL injection, potentially allowing for remote exploitation. The exploit has been published. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions itsourcecode Payroll Management System versions prior to 1.1 Description A security issue exists in itsourcecode Payroll Management System. Manipulation of the `page` argument in the `/navbar.php` file can lead to cross-site scripting. The attack can be launched remotely. The exploit has been publicly disclosed. Recommendations Update itsourcecode Payroll Management System to version 1.1 or later.