Описание
A vulnerability was found in code-projects Job Recruitment 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- Product
- ExploitThird Party Advisory
- Permissions Required
- Permissions Required
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:anisha:job_recruitment:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.0007
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-89
Связанные уязвимости
CVSS3: 7.3
github
около 1 года назад
A vulnerability was found in code-projects Job Recruitment 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 22%
0.0007
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-89