23 matches found
CVE-2024-2687
CVE-2024-2687 affects Campcodes Online Job Finder System 1.0. A SQL injection vulnerability exists in the /admin/applicants/index.php file when the id parameter is manipulated, potentially allowing remote exploitation. Public exploit information is noted, and multiple sources (NVD entry and vendo...
CVE-2024-2683
The CVE-2024-2683 entry concerns Campcodes Online Job Finder System 1.0. The vulnerability is a cross-site scripting (XSS) flaw in the /admin/company/index.php file, caused by manipulating the view parameter. It is exploitable remotely, and public exploit details have been disclosed. Affected fun...
CVE-2024-2671
Campcodes Online Job Finder System 1.0 is affected by a SQL injection in /admin/user/index.php via the id parameter. Root cause: unsanitized input allows remote manipulation, with exploitation disclosed publicly. Impact: confidentiality and possibly data exposure per documented CVSS notes; exploi...
CVE-2024-2682
CVE-2024-2682 affects Campcodes Online Job Finder System 1.0. The vulnerability is an unspecified function in /admin/employee/controller.php where manipulating the EMPLOYEEID argument results in cross-site scripting. Attacks can be launched remotely, and exploitation details have been disclosed p...
CVE-2024-2684
CVE-2024-2684 affects Campcodes Online Job Finder System 1.0. The vulnerability is in the file /admin/category/index.php, where manipulating the numeric/string parameter view leads to cross-site scripting (XSS). The issue is exploitable remotely and has been publicly disclosed. Multiple sources c...
CVE-2024-2681
CVE-2024-2681 affects Campcodes Online Job Finder System version 1.0. The vulnerability is a cross-site scripting issue in the processing of the file /admin/employee/index.php, caused by manipulation of the view argument. Exploitation may be performed remotely, and public disclosure exists. Produ...
CVE-2024-2674
The CVE describes a SQL injection in Campcodes Online Job Finder System 1.0, affecting the /admin/employee/index.php file via the id parameter. This remote vulnerability can be triggered without user interaction and has publicly disclosed exploit information. The exact impact is SQL injection com...
CVE-2024-2675
CVE-2024-2675 concerns Campcodes Online Job Finder System 1.0. The issue is a SQL injection in the handling of the id parameter in the file path /admin/company/index.php, caused by improper processing of the input. The vulnerability is described as exploitable remotely, with the exploit publicly ...
CVE-2024-2685
CVE-2024-2685 affects Campcodes Online Job Finder System 1.0. The vulnerability is in the /admin/applicants/index.php file, where manipulating the view argument leads to Cross-Site Scripting (XSS). This can be triggered remotely, and the exploit has been disclosed publicly (VDB-257385). Several s...
CVE-2024-2676
CVE-2024-2676 affects Campcodes Online Job Finder System 1.0, specifically an SQL injection in the /admin/company/controller.php file via the id parameter. A remote attacker could exploit this, and public disclosures exist (VDB-257376, multiple citations). The vulnerability stems from an unspecif...
CVE-2024-2672
CVE-2024-2672 affects Campcodes Online Job Finder System 1.0. The Red Hat and vendor records confirm a SQL injection vulnerability in the /admin/user/controller.php file, triggered by manipulating the UESRID parameter. The issue is exploitable remotely and, per disclosures, the exploit is public....
CVE-2024-2680
CVE-2024-2680 affects Campcodes Online Job Finder System 1.0. The vulnerability is a cross-site scripting issue in the /admin/user/index.php file, caused by manipulation of the view parameter. It is exploitable remotely, and multiple sources confirm that the exploit has been disclosed publicly. C...
CVE-2024-2686
CVE-2024-2686 affects Campcodes Online Job Finder System 1.0. The vulnerability is a cross-site scripting flaw in /admin/applicants/controller.php, triggered by manipulating the JOBREGID parameter. Exploitation is remote, and public exploits have been disclosed. CVSS metrics indicate a MEDIUM sev...
CVE-2024-2677
CVE-2024-2677 concerns Campcodes Online Job Finder System 1.0. Affected component: the file /admin/category/controller.php, where manipulating the CATEGORYID parameter triggers an SQL injection. The vulnerability can be exploited remotely; multiple sources label the issue as critical. The exploit...
CVE-2024-2673
CVE-2024-2673 affects Campcodes Online Job Finder System v1.0. The vulnerability resides in the /admin/login.php file, where manipulation of the user_email parameter enables a SQL injection. Exploitation is remotely possible and has been disclosed publicly (VDB-257373). Multiple sources corrobora...
CVE-2024-2670
CVE-2024-2670 affects Campcodes Online Job Finder System 1.0. The vulnerability is a SQL injection in the unknown function of the file /admin/vacancy/index.php , triggered by manipulating the id parameter. Exploitation is possible remotely and the vulnerability has been disclosed publicly. There ...
CVE-2024-2679
CVE-2024-2679 affects Campcodes Online Job Finder System 1.0. A cross-site scripting vulnerability exists in the /admin/vacancy/index.php file, caused by manipulation of the view parameter. It can be exploited remotely, and public exploits are noted. Impact details in sources indicate user intera...
CVE-2024-2678
CVE-2024-2678 affects Campcodes Online Job Finder System v1.0, specifically the /admin/applicants/controller.php functionality. The root cause is a SQL injection vulnerability via the JOBREGID parameter, which can be exploited remotely. The vulnerability is confirmed across multiple sources (e.g....
CVE-2024-2669
CVE-2024-2669 affects Campcodes Online Job Finder System 1.0. The vulnerability is in the GET Parameter Handler, specifically the EMPLOYEEID argument in /admin/employee/controller.php, whose manipulation leads to SQL injection. Multiple connected sources confirm remote exploitation potential and ...
CVE-2024-2668
CVE-2024-2668 affects Campcodes Online Job Finder System v1.0. The vulnerability resides in the code path handling /admin/vacancy/controller.php, where manipulating the id/CATEGORY parameter enables SQL injection. This can be exploited remotely, and multiple sources indicate the vulnerability is ...
CVE-2025-10444
CVE-2025-10444 affects Campcodes Online Job Finder System 1.0. The config/behavior: an SQL injection vulnerability exists in the /advancesearch.php file caused by manipulation of the Username parameter, enabling remote exploitation. The exploit has been publicly released and is consistent across ...
CVE-2025-10447
CVE-2025-10447 affects Campcodes Online Job Finder System 1.0. The vulnerability is in an unknown function of /eris/applicationform.php where manipulating the picture parameter enables unrestricted file upload, allowing remote exploitation. Multiple sources confirm the exploit is public, with var...
CVE-2025-10448
CVE-2025-10448 affects Campcodes Online Job Finder System 1.0. The vulnerability is an SQL injection in the parameter manipulated through /index.php?q=result&searchfor=bycompany, exploitable remotely. Multiple sources confirm exploitation potential and that an exploit has been published. Some fee...