336 matches found
CVE-2022-38260
CVE-2022-38260 affects Interview Management System v1.0. A SQL injection exists in the component /interview/delete.php, exploitable via the query parameters action and id (e.g., /interview/delete.php?action=questiondelete&id=). The issue is confirmed across multiple sources in the connected docum...
CVE-2022-38255
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php...
CVE-2022-38255
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php...
CVE-2022-38255
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php...
Sql injection
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php...
CVE-2022-38255
CVE-2022-38255 concerns Interview Management System v1.0. The vulnerability is a SQL injection in the id parameter of /interview/editQuestion.php. Root cause: unsanitized user input enabling arbitrary SQL execution. Reported by multiple sources (NVD/Red Hat/CVE lists and third-party embeds) with ...
CVE-2022-38255
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php...
PT-2022-24316 · Unknown · Interview Management System
Name of the Vulnerable Software and Affected Versions: Interview Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/interview/editQuestion.php" API endpoint. Recommendations: For...
Interview Management System SQL注入漏洞
Interview Management System is an interview management system for janobe individual developers. A security vulnerability exists in Interview Management System v1.0, which was discovered to contain an SQL injection vulnerability via the id parameter in /interview/editQuestion.php...
PT-2022-24320 · Unknown · Interview Management System
Name of the Vulnerable Software and Affected Versions: Interview Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. It can be exploited via the /interview/delete.php component, specifically through the action and id parameters. Recommendations: For...
Interview Management System SQL注入漏洞
Interview Management System is an interview management system for janobe individual developers. A security vulnerability exists in Interview Management System v1.0, which was discovered to contain a SQL injection vulnerability via the component /interview/delete.php?action=questiondelete&id=...
CVE-2022-2679
A vulnerability was found in SourceCodester Interview Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /viewReport.php. The manipulation of the argument id with the input UPDATEXML9729,CONCAT0x2e,0x716b707071,SELECT...
CVE-2022-2685
A vulnerability was found in SourceCodester Interview Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /addQuestion.php. The manipulation of the argument question with the input alert1 leads to cross site scripting. The attack may be...
CVE-2022-2679
A vulnerability was found in SourceCodester Interview Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /viewReport.php. The manipulation of the argument id with the input UPDATEXML9729,CONCAT0x2e,0x716b707071,SELECT...
CVE-2022-2685
A vulnerability was found in SourceCodester Interview Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /addQuestion.php. The manipulation of the argument question with the input alert1 leads to cross site scripting. The attack may be...
Cross site scripting
A vulnerability was found in SourceCodester Interview Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /addQuestion.php. The manipulation of the argument question with the input alert1 leads to cross site scripting. The attack may be...
Sql injection
A vulnerability was found in SourceCodester Interview Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /viewReport.php. The manipulation of the argument id with the input UPDATEXML9729,CONCAT0x2e,0x716b707071,SELECT...
CVE-2022-2685 SourceCodester Interview Management System addQuestion.php cross site scripting
A vulnerability was found in SourceCodester Interview Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /addQuestion.php. The manipulation of the argument question with the input alert1 leads to cross site scripting. The attack may be...
CVE-2022-2685
CVE-2022-2685 affects SourceCodester Interview Management System 1.0. The vulnerability is a cross-site scripting (XSS) flaw in the /addQuestion.php handler where the parameter question can be manipulated (example input: ). Exploitation is reported as remote. Connected sources confirm the issue i...
CVE-2022-2679 SourceCodester Interview Management System viewReport.php sql injection
A vulnerability was found in SourceCodester Interview Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /viewReport.php. The manipulation of the argument id with the input UPDATEXML9729,CONCAT0x2e,0x716b707071,SELECT...