Loading market data...
← Back to CVE feed

CVE-2026-11506

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown function of the file /admin/search_staff_for_deletion.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jun 08, 2026 12:16 UTC Modified: Jun 08, 2026 14:57 UTC