| Title | code-projects job-recruitment-php v1.0 Sql injection |
|---|
| Description | There is a sql injection vulnerability in the system. The parameters that can be controlled: $person parameter. This function executes the jobtitle parameter into the SQL statement without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database. |
|---|
| Source | ⚠️ https://github.com/UnrealdDei/cve/blob/main/sql11.md |
|---|
| User | UnrealDawn (UID 76912) |
|---|
| Submission | 01/01/2025 08:19 (il y a 26 jours) |
|---|
| Moderation | 01/01/2025 08:49 (30 minutes later) |
|---|
| Status | Accepté |
|---|
| VulDB Entry | 289917 [code-projects Job Recruitment 1.0 _feedback_system.php person sql injection] |
|---|
| Points | 19 |
|---|