The vulnerability of the cn_update() function in the _all_edits.php script (/_parse/_all_edits.php) of the Job Recruitment system allows a perpetrator to gain unauthorized access to protected information and execute arbitrary code.
The vulnerability of the cnupdate function in the alledits.php /parse/alledits.php personnel recruitment system is related to the failure to take measures to neutralize special elements when processing parameters urle and cname. Exploiting this vulnerability can allow an attacker, operating...