CVE-2026-5238 | itsourcecode Payroll Management System 1.0 Parameter /view_employee.php ID sql injection

A vulnerability was found in itsourcecode Payroll Management System 1.0. It has been declared as critical. Affected by this issue is some unknown functionality of the file /view_employee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability appears as CVE-2026-5238. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More