Lucene search
K

12 matches found

BDU FSTEC
BDU FSTEC
added 2025/01/04 12:0 a.m.4 views

The vulnerability of the cn_update() function in the _all_edits.php script (/_parse/_all_edits.php) of the Job Recruitment system allows a perpetrator to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the cnupdate function in the alledits.php /parse/alledits.php personnel recruitment system is related to the failure to take measures to neutralize special elements when processing parameters urle and cname. Exploiting this vulnerability can allow an attacker, operating...

7.5CVSS7.6AI score0.00599EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.5 views

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is an open source job portal from Code-Projects. Code-Projects Job Recruitment version 1.0 has an injection vulnerability that originates from the jid/limit parameter of the /parse/alledits.php file containing a SQL injection vulnerability...

7.5CVSS7.9AI score0.00669EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.7 views

PT-2024-17843 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A problem has been found in the function fln update of the file / parse/ all edits.php. The manipulation of the arguments fname and lname leads to cross site scripting attacks. It is...

6.9CVSS4.7AI score0.00497EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.9 views

PT-2024-17841 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A problem was found in the function cn update of the file / parse/ all edits.php. The manipulation of the argument cname leads to cross site scripting. The attack may be initiated remotel...

6.9CVSS4.6AI score0.00497EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.5 views

PT-2024-17840 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in the function add req of the file / parse/ all edits.php. The manipulation of the argument jid/limit leads to SQL injection. The attack can be initiated...

7.5CVSS7.8AI score0.00669EPSS
Exploits1References12
OSV
OSV
added 2024/12/26 7:15 p.m.4 views

CVE-2024-12962

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /parse/alledits.php. The manipulation of the argument skillset leads to sql injection. The attack can be launched remotely. The...

7.5CVSS5.8AI score0.006EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/12/26 12:0 a.m.4 views

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability that originates from the parameter jobcompany in the addxp function of the file /parse/alledits.php that can lead to SQL injection...

9.8CVSS7.8AI score0.00636EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.5 views

PT-2024-9924 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical vulnerability was found in the function edit jobpost of the file / parse/ all edits.php. The manipulation of the argument jobtype leads to SQL injection. The attack can be...

9.8CVSS7.8AI score0.00599EPSS
Exploits1References12
CNNVD
CNNVD
added 2024/12/26 12:0 a.m.4 views

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability, which originates from the parameter cname/url in the cnupdate function of the file /parse/alledits.php that can lead to SQL injection...

9.8CVSS7.9AI score0.00599EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.5 views

PT-2024-9923 · Unknown · Job Recruitment

Name of the Vulnerable Software and Affected Versions: Job Recruitment version 1.0 Description: A critical vulnerability has been found in the function fln update of the file / parse/ all edits.php. The issue is related to the lack of neutralization of special elements when processing the...

9.8CVSS8.1AI score0.00599EPSS
Exploits1References13
CNNVD
CNNVD
added 2024/12/26 12:0 a.m.4 views

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is an open source job portal from Code-Projects. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability that stems from the parameter skillset in the file /parse/alledits.php that can lead to SQL injection...

7.5CVSS7.9AI score0.006EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/25 12:0 a.m.6 views

PT-2024-9922 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in the code-projects Job Recruitment system, affecting an unknown functionality of the file / parse/ all edits.php. The manipulation of the skillset argume...

7.5CVSS8AI score0.006EPSS
Exploits1References13
Rows per page
Query Builder