Loading market data...
← Back to CVE feed

CVE-2026-15559

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability was detected in CodeAstro Simple Online Leave Management System 1.0. This affects an unknown part of the file /SimpleOnlineLeave/admin/accept.php of the component POST Handler. Performing a manipulation of the argument appid results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jul 13, 2026 13:16 UTC Modified: Jul 13, 2026 16:57 UTC