Payroll Management System: SQL Injection in Employee View Page

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.1

Payroll Management System: SQL Injection in Employee View Page

CVE-2026-37347

Summary

A security issue exists in the Payroll Management and Information System v1.0 that could allow an attacker to access sensitive employee data. This is a serious concern as it could lead to unauthorized access to employee information. To mitigate this risk, update to the latest version of the software or apply a patch if available.

Original title

SourceCodester Payroll Management and Information System v1.0 is vulnerable to SQL Injection in the file /payroll/view_employee.php.

Original description

SourceCodester Payroll Management and Information System v1.0 is vulnerable to SQL Injection in the file /payroll/view_employee.php.

Vulnerability type

CWE-89 SQL Injection

https://github.com/mt-0505/cve-report/blob/main/sourcecodester/payroll-managemen...

Published: 16 Apr 2026 · Updated: 16 Apr 2026 · First seen: 16 Apr 2026