3 matches found
The vulnerability of the cn_update() function in the _all_edits.php script (/_parse/_all_edits.php) of the Job Recruitment system allows a perpetrator to gain unauthorized access to protected information and execute arbitrary code.
The vulnerability of the cnupdate function in the alledits.php /parse/alledits.php personnel recruitment system is related to the failure to take measures to neutralize special elements when processing parameters urle and cname. Exploiting this vulnerability can allow an attacker, operating...
CVE-2024-12966
A vulnerability was found in code-projects Job Recruitment 1.0. It has been rated as critical. This issue affects the function cnupdate of the file /parse/alledits.php. The manipulation of the argument cname/url leads to sql injection. The attack may be initiated remotely. The exploit has been...
PT-2024-9925 · Unknown · Code-Projects Job Recruitment
Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue affects the cn update function of the file / parse/ all edits.php. The manipulation of the cname and url arguments leads to SQL injection. The attack may be initiated...