3 matches found
CVE-2025-10078
SourceCodester Online Polling System 1.0 has a SQL injection in /admin/candidates.php via manipulated ID parameter. Root cause: improper handling of the ID value enables arbitrary SQL execution. Impact: remote exploitation possible with no authentication, potentially exposing or altering data (hi...
CVE-2023-26847
A stored cross-site scripting XSS vulnerability in OpenCATS v0.9.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the state parameter at opencats/index.php?m=candidates...
jobsindubai.com XSS vulnerability
Vulnerable URL: https://jobsindubai.com/employers/candidates.asp Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 56429 Google Pagerank| 4 VIP website status:| No Check jobsindubai.c...