Lucene search
PRIOn knowledge basePRION:CVE-2022-25228HistoryAug 18, 2022 - 8:15 p.m.
Sql injection
2022-08-1820:15:00
PRIOn knowledge base
www.prio-n.com
1
CandidATS Version 3.0.0 Beta allows an authenticated user to inject SQL queries in ‘/index.php?m=settings&a=show’ via the ‘userID’ parameter, in ‘/index.php?m=candidates&a=show’ via the ‘candidateID’, in ‘/index.php?m=joborders&a=show’ via the ‘jobOrderID’ and ‘/index.php?m=companies&a=show’ via the ‘companyID’ parameter
| CPE | Name | Operator | Version |
|---|---|---|---|
| candidats | eq | 3.0.0 beta |
Related
cve
cve
CVE-2022-25228
2022-08-18 20:15:10
cvelist
cvelist
CVE-2022-25228
2022-08-18 19:29:36
nvd
nvd
CVE-2022-25228
2022-08-18 20:15:10