Отправить #855975: code-projects Online Job Portal System 1.0 SQL InjectionИнформация

Названиеcode-projects Online Job Portal System 1.0 SQL Injection
ОписаниеDuring a security review of "Online Job Portal System", a critical SQL injection vulnerability was discovered in the /login.php file. This vulnerability stems from insufficient user input validation of the txtUser and txtPass POST parameters, allowing attackers to inject malicious SQL queries into the authentication logic. The attacker can log into any account type (Administrator, Employer, JobSeeker) without valid credentials by appending SQL injection payloads to the login form.
Источник⚠️ https://github.com/shihuizhang-dazhi/MY-CVE/issues/5
Пользователь
 dazhi (UID 87857)
Представление11.06.2026 12:52 (1 месяц назад)
Модерация13.07.2026 23:19 (1 month later)
СтатусДубликат
Запись VulDB376174 [code-projects Online Job Portal 1.0 login.php txtUser/txtPass SQL-инъекция]
Баллы0

Want to know what is going to be exploited?

We predict KEV entries!