5 matches found
JobCareer < 3.5 - Multiple Cross-Site Scripting (XSS)
An Unauthenticated Reflected & Authenticated Persistent XSS vulnerabilities were discovered in the JobCareer theme through 3.4 for WordPress. Unauthenticated Reflected XSS - Vulnerable parameters: jobtitle, specialisms, location Authenticated Persistent XSS on Employer Profile - «Complete Address...
JobCareer < 3.5 - Multiple Cross-Site Scripting (XSS)
An Unauthenticated Reflected & Authenticated Persistent XSS vulnerabilities were discovered in the JobCareer theme through 3.4 for WordPress. Unauthenticated Reflected XSS - Vulnerable parameters: jobtitle, specialisms, location Authenticated Persistent XSS on Employer Profile - «Complete Address...
Careerfy < 4.1.0 - Multiple Cross-Site Scripting (XSS) Issues
An Unauthenticated Reflected & Multiple Authenticated Persistent XSS vulnerabilities was discovered in the Careerfy Job Board theme through 3.9.0 and 4.0.0 for WordPress. Authenticated Persistent XSS on the Candidate and Employer Profile pages. An Authenticated Persistent XSS @ Job Page will...
Parodia 6.8 employer-profile.asp SQL Injection
No description provided by source. Exploit Title: Parodia 6.8 and early SQL injection Date: June 24 2012 Exploit Author:Carlos Mario Penagos Hollmann Vendor Homepage: http://www.parodia.net/ Version: 6.8 CVE : CVE-2011-2751 http://server/' --- blind SQL http://server/agencyprofile.asp?AGID='...
Parodia 6.8 - 'employer-profile.asp' SQL Injection
Exploit Title: Parodia 6.8 and early SQL injection Date: June 24 2012 Exploit Author:Carlos Mario Penagos Hollmann Vendor Homepage: http://www.parodia.net/ Version: 6.8 CVE : CVE-2011-2751 http://server/' --- blind SQL http://server/agencyprofile.asp?AGID=' http://server/employer-profile.asp?agid...