CVE-2024-12967
7.3HIGHA vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. Affected is the function fln_update of the file /_parse/_all_edits.php. The manipulation of the argument fna
Published: 12/26/2024Updated: 4/3/2025
Description
A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. Affected is the function fln_update of the file /_parse/_all_edits.php. The manipulation of the argument fname/lname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AI AnalysisPowered by AI
Affected Products
code-projectsjob_recruitment
1.0
References
- https://code-projects.org/Product
- https://github.com/glqt/CVE/blob/main/sql-glqt.mdExploitThird Party Advisory
- https://vuldb.com/?ctiid.289332Permissions RequiredVDB Entry
- https://vuldb.com/?id.289332Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.469002Third Party AdvisoryVDB Entry
- https://github.com/glqt/CVE/blob/main/sql-glqt.mdExploitThird Party Advisory