SQL Injection Vulnerability in Job Recruitment Software by Code-Projects
CVE-2024-11077
6.9MEDIUM
What is CVE-2024-11077?
An SQL injection vulnerability exists in the Job Recruitment software by Code-Projects. This vulnerability allows attackers to manipulate the 'email' argument within the /index.php file, leading to unauthorized access to the underlying database. Due to the nature of the exploit, it can be executed remotely, posing significant risks to data integrity and user confidentiality. The vulnerability has been publicly disclosed, making affected systems a target for potential attacks. Prompt remediation is essential to mitigate the risks associated with this vulnerability.
Affected Version(s)
Job Recruitment 1.0