A vulnerability categorized as critical has been discovered in CodeAstro Payroll System 1.0 . This affects an unknown part of the file /home_employee.php . The manipulation of the argument emp_id results in sql injection. This vulnerability was named CVE-2026-10286 . The attack may be performed from remote. In addition, an exploit is available.