Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is an open source job portal from Code-Projects. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability that stems from the parameter skillset in the file /parse/alledits.php that can lead to SQL injection...

PT-2024-9923 · Unknown · Job Recruitment

Name of the Vulnerable Software and Affected Versions: Job Recruitment version 1.0 Description: A critical vulnerability has been found in the function fln update of the file / parse/ all edits.php. The issue is related to the lack of neutralization of special elements when processing the...

PT-2024-9925 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue affects the cn update function of the file / parse/ all edits.php. The manipulation of the cname and url arguments leads to SQL injection. The attack may be initiated...

PT-2024-17834 · Code Projects · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue was found in the add xp function of the file / parse/ all edits.php. The manipulation of the job company argument leads to SQL injection. This issue can be exploited...

PT-2024-17809 · Code Projects · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue affects the add edu function of the file / parse/ all edits.php. The manipulation of the degree argument leads to SQL injection. The attack may be initiated remotely. Oth...

PT-2024-9924 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical vulnerability was found in the function edit jobpost of the file / parse/ all edits.php. The manipulation of the argument jobtype leads to SQL injection. The attack can be...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability that originates from the parameter jobcompany in the addxp function of the file /parse/alledits.php that can lead to SQL injection...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability, which originates from the parameter cname/url in the cnupdate function of the file /parse/alledits.php that can lead to SQL injection...

PT-2024-9922 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in the code-projects Job Recruitment system, affecting an unknown functionality of the file / parse/ all edits.php. The manipulation of the skillset argume...

The vulnerability of the mac80211 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the mac80211 component in the Linux operating system’s kernel is related to improper input validation in the function ieee80211parseelemscrc. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2025-3612

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description A use-after-free issue was found in the Linux kernel, specifically in the adv7533 attach dsi function. The host node pointer was assigned and freed in adv7533 parse dt, and later used in adv753...

Important: expat

Issue Overview: An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490 Affected Packages: expat Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2...

The vulnerability of the parse_lrc function in the Gstreamer multimedia framework, which allows a hacker to trigger a service failure.

The vulnerability of the parselrc function in the Gstreamer multimedia framework is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gst_opus_dec_parse_header function in the Gstreamer multimedia framework allows a hacker to cause a service failure.

The vulnerability of the gstopusdecparseheader function in the Gstreamer multimedia framework is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the qtdemux_parse_sbgp function in the Gstreamer multimedia framework, which allows a hacker to cause a service failure.

The vulnerability of the qtdemuxparsesbgp function in the Gstreamer multimedia framework is related to the use of the NULL pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

AZL-54467 CVE-2024-45338 affecting package cni for versions less than 1.1.2-4

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

AZL-54485 CVE-2024-45338 affecting package buildah for versions less than 1.41.4-2

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

AZL-54398 CVE-2024-45338 affecting package prometheus-adapter for versions less than 0.12.0-2

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

AZL-54449 CVE-2024-45338 affecting package ig for versions less than 0.32.0-3

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

AZL-54531 CVE-2024-45338 affecting package kubevirt for versions less than 0.59.0-23

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...