| Название | code-projects job-recruitment-php 0/1 Sql injection |
|---|
| Описание | In jid parameter .An unrestricted SQL injection attack exists in a job-recruitment-system. The parameters that can be controlled are as follows: jid parameter . This function executes the jid parameter into the SQL statement without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database. |
|---|
| Источник | ⚠️ https://github.com/UnrealdDei/cve/blob/main/sql7.md |
|---|
| Пользователь | UnrealDawn (UID 76912) |
|---|
| Представление | 26.12.2024 12:24 (1 Год назад) |
|---|
| Модерация | 26.12.2024 18:17 (6 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 289354 [code-projects Job Recruitment 1.0 /_parse/_all_edits.php add_req jid/limit SQL-инъекция] |
|---|
| Баллы | 18 |
|---|