15 matches found
EUVD-2017-9043
Malware in sbrugna...
Readymade Job Portal Script SQL Injection Vulnerability
Readymade Job Portal Script suffers from a remote SQL injection vulnerability. The researcher requested version information from the vendor while reporting the vulnerability but the company has been unresponsive. ┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐...
CVE-2017-17896
Readymade Job Site Script has XSS via the keyword parameter to the /job URI...
CVE-2017-17894
Readymade Job Site Script has CSRF via the /job URI...
CVE-2017-17895
Readymade Job Site Script has SQL Injection via the locationname array parameter to the /job URI...
CVE-2017-17894
Readymade Job Site Script has CSRF via the /job URI...
CVE-2017-17896
Readymade Job Site Script has XSS via the keyword parameter to the /job URI...
PHP Scripts Mall Readymade Job Site Script SQL Injection Vulnerability
PHP Scripts Mall Readymade Job Site Script is a PHP based job site script by PHP Scripts Mall India. The script includes features like job management, profile management and email notifications. A SQL injection vulnerability exists in PHP Scripts Mall Readymade Job Site Script. A remote attacker...
CVE-2017-17896
Readymade Job Site Script has XSS via the keyword parameter to the /job URI...
CVE-2017-17894
CVE-2017-17894 affects the Readymade Job Site Script, with a CSRF flaw exploitable via the /job URI. Public sources (NVD/NVD-derived records) assign a CVSS‑3 base score of 8.8 (HIGH) and CVSS‑2 of 6.8 (MEDIUM), indicating network access required with user interaction typically needed (UI: REQUIRE...
CVE-2017-17896
CVE-2017-17896 affects Readymade Job Site Script with a cross-site scripting (XSS) vulnerability via the keyword parameter to the /job URI. The NVD entry reports a base score of 4.3 (CVSS2) and 6.1 (CVSS3), indicating that network access is required and user interaction is involved in a changed s...
CVE-2017-17895
CVE-2017-17895 affects Readymade Job Site Script (PHP Scripts Mall). The vulnerability is a SQL Injection via the location_name array parameter to the /job URI, caused by unsanitized input in the application. Documented impact includes high confidentiality, integrity, and availability risks (CVSS...
CVE-2017-17894
Readymade Job Site Script has CSRF via the /job URI...
CVE-2017-17895
Readymade Job Site Script has SQL Injection via the locationname array parameter to the /job URI...
Readymade Job Site Script 3.0.1 SQL Injection
Title: READYMADE JOB SITE SCRIPT v3.0.1 - Authentication Bypass & SQL injection Credit: Bilal KARDADOU Vendor: http://www.2daybiz.com Vendor URL: http://www.2daybiz.com/content/products/40-readymade-job-site-script.php Product: READYMADE JOB SITE SCRIPT v3.0.1 Google Dork: N/A Product & Service...