Benjamin BALET Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php.
{
"versions": [
{
"introduced": "0"
},
{
"last_affected": "1.0.0"
}
]
}