CVE-2026-5210

HIGH

A vulnerability was detected in SourceCodester Leave Application System 1.0. This affects an unknown part. Performing a manipulation of the argument page results in file inclusion. Remote exploitation of the attack is possible. The exploit is now public and may be used.

CVSS v3.1 Score

7.3
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Attack Vector
NETWORK
Complexity
LOW
Privileges
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW
Published: 3/31/2026Modified: 4/1/2026

Related Intelligence (1)

HIGHVulnerability

NVD HIGH: CVE-2026-5210 — A vulnerability was detected in SourceCodester Leave Application System 1.0. Thi...

A vulnerability was detected in SourceCodester Leave Application System 1.0. This affects an unknown part. Performing a manipulation of the argument page results in file inclusion. Remote exploitation of the attack is possible. The exploit is now public and may be used.

CVE-2026-5210
NIST NVD

References (5)

https://medium.com/@hemantrajbhati5555/local-file-inclusion-lfi-in-leave-application-system-php-sqlite3-4e095bb7ee40https://vuldb.com/submit/780419https://vuldb.com/vuln/354346https://vuldb.com/vuln/354346/ctihttps://www.sourcecodester.com/