6 matches found
CVE-2025-11090 itsourcecode Open Source Job Portal index.php sql injection
A vulnerability was identified in itsourcecode Open Source Job Portal 1.0. Affected is an unknown function of the file /admin/employee/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might...
CVE-2025-11088 itsourcecode Open Source Job Portal index.php sql injection
A weakness has been identified in itsourcecode Open Source Job Portal 1.0. Impacted is an unknown function of the file /admin/vacancy/index.php?view=edit. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available ...
CVE-2025-11088
The CVE-2025-11088 entry concerns itsourcecode Open Source Job Portal 1.0. A SQL injection vulnerability exists in the file /admin/vacancy/index.php?view=edit, triggered by manipulation of the ID argument. The issue is exploitable remotely and a public exploit is available. Connected sources (PT-...
CVE-2025-11078 itsourcecode Open Source Job Portal controller.php unrestricted upload
A vulnerability was identified in itsourcecode Open Source Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/user/controller.php?action=photos. The manipulation of the argument photo leads to unrestricted upload. The attack is possible to be carried out...
CVE-2025-11078
The CVE-2025-11078 pertains to itsourcecode Open Source Job Portal 1.0. Affected component is the file /admin/user/controller.php?action=photos, where manipulating the photo parameter enables unrestricted file uploads. This vulnerability is remotely exploitable and a public exploit exists. Connec...
itsourcecode Open Source Job Portal SQL注入漏洞
itsourcecode Open Source Job Portal is itsourcecode open source a business portal site . A SQL injection vulnerability exists in itsourcecode Open Source Job Portal version 1.0, which originates from a misuse of the parameter useremail in the file /jobportal/admin/login.php, which could lead to a...