Description
A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deductions. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
References
VDB-276797 | itsourcecode Payroll Management System ajax.php sql injection
VDB-276797 | CTI Indicators (IOB, IOC, TTP, IOA)
Itsourcecode Payroll Management System V1.0 SQL Injection
https://github.com/ppp-src/ha/issues/8