26 matches found
PT-2026-35209
A security flaw has been discovered in CodeAstro Online Job Portal 1.0. The affected element is an unknown function of the file /admin/jobs-admins/delete-jobs.php of the component All Jobs Page. Performing a manipulation of the argument ID results in sql injection. The attack is possible to be...
EUVD-2024-49206
Malicious code in bioql PyPI...
EUVD-2024-49200
Malicious code in bioql PyPI...
itsourcecode Open Source Job Portal SQL注入漏洞
itsourcecode Open Source Job Portal is itsourcecode open source a business portal site . A SQL injection vulnerability exists in itsourcecode Open Source Job Portal version 1.0, which stems from incorrect manipulation of the parameter ID in the file /jobportal/admin/company/index.php, which could...
CVE-2024-8469
SQL injection vulnerability, by which an attacker could send a specially designed query through id parameter in /jobportal/admin/employee/index.php, and retrieve all the information stored in it...
CVE-2024-8471
Cross-Site Scripting XSS vulnerability, whereby user-controlled input is not sufficiently encrypted. Exploitation of this vulnerability could allow an attacker to retrieve the session details of an authenticated user through JOBID and USERNAME parameters in /jobportal/process.php...
CVE-2024-8468
SQL injection vulnerability, by which an attacker could send a specially designed query through search parameter in /jobportal/index.php, and retrieve all the information stored in it...
CVE-2024-8466
SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/category/controller.php, and retrieve all the information stored in it...
CVE-2024-8466
SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/category/controller.php, and retrieve all the information stored in it...
CVE-2024-8465
SQL injection vulnerability, by which an attacker could send a specially designed query through userid parameter in /jobportal/admin/user/controller.php, and retrieve all the information stored in it...
CVE-2024-8468
SQL injection vulnerability, by which an attacker could send a specially designed query through search parameter in /jobportal/index.php, and retrieve all the information stored in it...
PT-2024-39036 · Unknown · Job Portal
Name of the Vulnerable Software and Affected Versions: JobPortal affected versions not specified Description: The issue is related to an SQL injection vulnerability. An attacker could send a specially designed query through the id parameter in the "/jobportal/admin/employee/index.php" endpoint an...
jobportal-bremen.de Cross Site Scripting vulnerability OBB-3478223
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
jobportal-brandenburg24.de Cross Site Scripting vulnerability OBB-2278663
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
jobportal-bayern.de Cross Site Scripting vulnerability OBB-1445288
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
jobportal-hamburg24.de Cross Site Scripting vulnerability OBB-1445074
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
jobportal-wuerzburg.de Cross Site Scripting vulnerability OBB-1417013
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
jobportal-tuebingen.de Cross Site Scripting vulnerability OBB-1417011
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
jobportal-paderborn.de Cross Site Scripting vulnerability OBB-1410788
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
jobportal-ilmenau.de Cross Site Scripting vulnerability OBB-1400309
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...