CWE-89

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component admincashadvance_delete.php.

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component adminattendance_delete.php.

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component adminattendance_delete.php.

A vulnerability, which was classified as critical, was found in SourceCodester Automated Beer Parlour Billing System. This affects an unknown part of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-206247.

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component adminovertime_delete.php.

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component adminschedule_delete.php.