CVE-2024-12939 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php add_edu degree sql injection

Inserito da Angelo Barbosa | Dic 25, 2024 | CVE

A vulnerability was found in code-projects Job Recruitment 1.0. It has been rated as critical. This issue affects the function add_edu of the file /_parse/_all_edits.php. The manipulation of the argument degree leads to sql injection.

The identification of this vulnerability is CVE-2024-12939. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-12939 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php add_edu degree sql injection

Post correlati

CVE-2024-38631 | Linux Kernel up to 6.9.3 PAC1934 array index (8dbcb3a8cfdf/51fafb3cd7fc)

CVE-2024-24563 | vyperlang Vyper up to 0.3.10 array index (GHSA-52xq-j7v9-v4v2)

CVE-2024-31771 | TotalAV 6.0.740 File permission

CVE-2024-5020 | Gallery Plugin on WordPress FancyBox JavaScript Library cross site scripting