Loading market data...
← Back to CVE feed

CVE-2026-11508

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability was determined in CodeAstro Leave Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/search_staff_to_assign_pc.php. This manipulation of the argument Name causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jun 08, 2026 12:16 UTC Modified: Jun 08, 2026 14:57 UTC