The vulnerability of the edit_jobpost() function in the _all_edits.php (/_parse/_all_edits.php) script of the Job Recruitment system allows a hacker to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the editjobpost function in the alledits.php /parse/alledits.php script of the Job Recruitment system is related to the lack of measures taken to neutralize special elements during the processing of the jobtype parameter. Exploiting this vulnerability could allow an attacker,...

CVE-2024-12968

A vulnerability classified as critical was found in code-projects Job Recruitment 1.0. Affected by this vulnerability is the function editjobpost of the file /parse/alledits.php. The manipulation of the argument jobtype leads to sql injection. The attack can be launched remotely. The exploit has...

PT-2024-9924 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical vulnerability was found in the function edit jobpost of the file / parse/ all edits.php. The manipulation of the argument jobtype leads to SQL injection. The attack can be...