3 matches found
SkilMatch Systems JobLister3 Index.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25296/info JobLister3 is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
SkilMatch Systems JobLister3 Index.PHP SQL注入漏洞
SkilMatch Systems JobLister3是一款基于PHP的WEB应用程序。 SkilMatch Systems JobLister3不正确过滤用户提交的URI输入,远程攻击者可以利用漏洞对SQL进行注入攻击,可获得敏感信息。 问题是脚本'Index.PHP'对用户提交的'jobid'参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息。 SkilMatch Systems JobLister3 目前没有解决方案提供: http://www.skilmatch.com/...
SkilMatch Systems JobLister3 - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/25296/info JobLister3 is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...