CVE-2026-5238

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions itsourcecode Payroll Management System version 1.0

Description A weakness exists in itsourcecode Payroll Management System 1.0. The issue affects some unknown functionality of the file /view employee.php within the Parameter Handler component. Manipulation of the ID argument can lead to SQL injection, and the attack can be performed remotely. The exploit has been made publicly available.

Recommendations Update to a newer version that contains a fix for this vulnerability.

Exploit

Fix

Special Elements Injection

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-89

Related Identifiers

CVE-2026-5238

Affected Products

Payroll Management System

CVE-2026-5238

Weakness Enumeration

Related Identifiers

Affected Products

References · 8