VYPR
Unrated severityNVD Advisory· Published Dec 21, 2023· Updated Sep 12, 2024

Leave Management System Project v1.0 - Multiple Authenticated SQL Injections (SQLi)

CVE-2023-44481

Description

Leave Management System Project v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'setearnleave' parameter of the admin/setleaves.php resource does not validate the characters received and they are sent unfiltered to the database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.