NextGuard
UNKNOWNCVE-2026-5326

SourceCodester Leave Application System User Information index.php authorization

Platform

php

Component

leave-application-system

View on NVD

A vulnerability was identified in SourceCodester Leave Application System 1.0. Impacted is an unknown function of the file /index.php?page=manage_user of the component User Information Handler. Such manipulation of the argument ID leads to authorization bypass. The attack can be executed remotely. The exploit is publicly available and might be used.

How to fix

Actualizar a una versión parcheada o aplicar las medidas de seguridad recomendadas por el proveedor para evitar la omisión de autorización. Verificar y validar las entradas del usuario, especialmente el parámetro ID, para prevenir el acceso no autorizado a la información del usuario.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free