Gửi #846744: code-projects Online Job Portal 1.0 SQL Injectionthông tin

tiêu đềcode-projects Online Job Portal 1.0 SQL Injection
Mô tảAn unauthenticated SQL injection vulnerability exists in login.php of the Online Job Portal System 1.0. The application fails to properly sanitize user-supplied input for the txtUser and txtPass parameters before concatenating them into SQL queries. An unauthenticated remote attacker can exploit this flaw by injecting specially crafted SQL payloads, leading to authentication bypass, unauthorized access to the administrative panel, and full database disclosure, including administrator credentials and sensitive PII from job seekers and employers.
Nguồn⚠️ https://github.com/aiyuyuyu/cve/blob/main/job_portal_sql.md
Người dùng
 yuyuyu (UID 97935)
Đệ trình03/06/2026 08:38 (cách đây 1 tháng)
Kiểm duyệt03/07/2026 20:53 (1 month later)
Trạng tháiđược chấp nhận
Mục VulDB376174 [code-projects Online Job Portal 1.0 login.php txtUser/txtPass Tiêm SQL]
điểm20

Might our Artificial Intelligence support you?

Check our Alexa App!