Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'JobId' parameter of the Employer/DeleteJob.php resource does not validate the characters received and they are sent unfiltered to the database.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Fluid Attacks
Published: 2023-12-21T23:26:34.521Z
Updated: 2024-08-02T22:01:25.695Z
Reserved: 2023-11-29T17:48:17.255Z
Link: CVE-2023-49689
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-22T00:15:36.050
Modified: 2024-11-21T08:33:41.890
Link: CVE-2023-49689
Redhat
No data.