CVE-2024-12978 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php add_req jid/limit sql injection

Inserito da Angelo Barbosa | Dic 26, 2024 | CVE

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. This vulnerability affects the function add_req of the file /_parse/_all_edits.php. The manipulation of the argument jid/limit leads to sql injection.

This vulnerability was named CVE-2024-12978. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-12978 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php add_req jid/limit sql injection

Post correlati

CVE-2023-4020 | Silabs GSDK prior 4.4.0 input validation

CVE-2024-25220 | Task Manager App 1.0 EditTask.php taskID sql injection

CVE-2024-40681 | IBM MQ Operator 2.0.26/3.2.4 Queue Manager privileges assignment (XFDB-297611)

CVE-2024-39118 | Mommy Heather Advanced Backups up to 3.5.3 Back Restore unknown vulnerability