N/A

PHPGurukul Employee Leave Management System 2.1 contains an Insecure Direct Object Reference (IDOR) vulnerability in leave-details.php. An authenticated user can change the leaveid parameter in the URL to access leave application details of other users.

N/A

N/A

PHPGurukul Employee Leave Management System 安全漏洞

PHPGurukul Employee Leave Management System是PHPGurukul公司的一个员工休假管理系统。 PHPGurukul Employee Leave Management System 2.1版本存在安全漏洞，该漏洞源于leaveid参数处理不当，可能导致不安全的直接对象引用攻击。

N/A

N/A