Gửi #855975: code-projects Online Job Portal System 1.0 SQL Injectionthông tin

tiêu đềcode-projects Online Job Portal System 1.0 SQL Injection
Mô tảDuring a security review of "Online Job Portal System", a critical SQL injection vulnerability was discovered in the /login.php file. This vulnerability stems from insufficient user input validation of the txtUser and txtPass POST parameters, allowing attackers to inject malicious SQL queries into the authentication logic. The attacker can log into any account type (Administrator, Employer, JobSeeker) without valid credentials by appending SQL injection payloads to the login form.
Nguồn⚠️ https://github.com/shihuizhang-dazhi/MY-CVE/issues/5
Người dùng
 dazhi (UID 87857)
Đệ trình11/06/2026 12:52 (cách đây 1 tháng)
Kiểm duyệt13/07/2026 23:19 (1 month later)
Trạng tháiBản sao
Mục VulDB376174 [code-projects Online Job Portal 1.0 login.php txtUser/txtPass Tiêm SQL]
điểm0

Want to stay up to date on a daily basis?

Enable the mail alert feature now!