A vulnerability, which was classified as critical , has been found in CodeAstro Payroll System 1.0 . The impacted element is an unknown function of the file /home_salary.php . The manipulation of the argument rate/salary_rate leads to sql injection. This vulnerability is uniquely identified as CVE-2026-11558 . The attack is possible to be carried out remotely. Moreover, an exploit is present.