CVE-2025-6826
published 2025-06-28CVE-2025-6826: A vulnerability, which was classified as critical, has been found in code-projects Payroll Management System 1.0. Affected by this issue is some unknown…
medium5.5CVSS 4.0
AVNACLATNPRNUINVCLVILVALSCNSINSANEPCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability, which was classified as critical, has been found in code-projects Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /Payroll_Management_System/ajax.php?action=save_department. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| campcodes | payroll_management_system | — | — |
| code-projects | payroll_management_system | — | — |
| msrc | cbl2_libtiff_4.4.0-6_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_libtiff_4.4.0-5_on_cbl_mariner_1.0 | — | — |