| शीर्षक | CodeAstro Online Job Portal Project in PHP MySQL 1.0 SQL Injection |
|---|
| विवरण | A SQL injection vulnerability was identified in CodeAstro Online Job Portal Project in PHP MySQL 1.0.
The application uses the id parameter directly in the SQL query without proper sanitization or parameter binding. This allows an authenticated administrator to inject malicious input and manipulate the query logic.
By exploiting this issue, an attacker can delete all job records from the database instead of a single intended entry. |
|---|
| स्रोत | ⚠️ https://github.com/Xmyronn/CodeAstro-Online-Job-Portal-SQLi-Delete-All.git |
|---|
| उपयोगकर्ता | imad alvi (UID 97088) |
|---|
| सबमिशन | 06/04/2026 06:06 PM (22 दिन पहले) |
|---|
| संयम | 25/04/2026 04:18 PM (19 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 359608 [CodeAstro Online Job Portal 1.0 All Jobs Page delete-jobs.php पहचान SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|