Employee Information at Risk Due to SQL Injection Vulnerability
CVE-2024-8469
7.5HIGH
What is CVE-2024-8469?
An SQL injection vulnerability exists in the job portal's admin interface, specifically within the 'id' parameter of the endpoint /jobportal/admin/employee/index.php. This flaw enables an unauthorized attacker to craft a malicious query that could potentially expose sensitive information stored in the database. Exploitation of this vulnerability could lead to significant data breaches, making it crucial for organizations to implement appropriate security measures to safeguard their applications.
Affected Version(s)
Job Portal 1.0