CVE-2019-14932

2019-08-12T13:15:00
ID CVE-2019-14932
Type cve
Reporter cve@mitre.org
Modified 2019-08-21T14:20:00

Description

The Recruitment module in Humanica Humatrix 7 1.0.0.681 and 1.0.0.203 allows remote attackers to access all candidates' information on the website via a modified selApp variable to personalData/resumeDetail.cfm. This includes personal information and other sensitive data.