itsourcecode Payroll Management System navbar.php cross site scripting

Description

A security vulnerability has been detected in itsourcecode Payroll Management System up to 1.0. Affected is an unknown function of the file /navbar.php. Such manipulation of the argument page leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

Affected Products

Vendor	Product	Versions
itsourcecode	payroll management system	1.0

References

https://vuldb.com/vuln/354651(vdb-entry, technical-description)
https://vuldb.com/vuln/354651/cti(signature, permissions-required)
https://vuldb.com/submit/778613(third-party-advisory)
https://github.com/ltranquility/submit/issues/5(exploit, issue-tracking)
https://itsourcecode.com/(product)

CVSS 3.14.3 MEDIUM

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CISA KEV❌ No

Actively exploited❌ No

CWECWE-79, CWE-94

PublishedApr 2, 2026

Last enriched3h ago

Trending Score0

Source articles0

Independent0

Info Completeness0/14

Missing: cve_id, title, description, vendor, product, versions, cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

itsourcecode Payroll Management System navbar.php cross site scripting

Description

Affected Products

References

Community Vote

Related CVEs (5)

Pin to Dashboard

Verification

Vulnerability Timeline