CVE-2023-49680

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

02 Jan 2024, 20:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.8
v2 : unknown
v3 : unknown
CPE cpe:2.3:a:kashipara:job_portal:1.0:*:*:*:*:*:*:*
References
  • {'url': 'https://fluidattacks.com/advisories/pollini/', 'tags': ['Exploit', 'Third Party Advisory'], 'source': 'help@fluidattacks.com'}
  • {'url': 'https://www.kashipara.com/', 'tags': ['Product'], 'source': 'help@fluidattacks.com'}
Summary
  • (es) Job Portal v1.0 es afectado por múltiples vulnerabilidades de inyección SQL no autenticadas. El parámetro 'txtTotal' del recurso Employer/InsertJob.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.
Summary (en) Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txtTotal' parameter of the Employer/InsertJob.php resource does not validate the characters received and they are sent unfiltered to the database. (en) Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CWE CWE-89

27 Dec 2023, 20:47

Type Values Removed Values Added
First Time Kashipara job Portal
Kashipara
CPE cpe:2.3:a:kashipara:job_portal:1.0:*:*:*:*:*:*:*
References () https://fluidattacks.com/advisories/pollini/ - () https://fluidattacks.com/advisories/pollini/ - Exploit, Third Party Advisory
References () https://www.kashipara.com/ - () https://www.kashipara.com/ - Product

22 Dec 2023, 12:18

Type Values Removed Values Added
Summary
  • (es) Job Portal v1.0 es afectado por múltiples vulnerabilidades de inyección SQL no autenticadas. El parámetro 'txtTotal' del recurso Employer/InsertJob.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.

21 Dec 2023, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-21 23:15

Updated : 2024-01-02 20:15


NVD link : CVE-2023-49680

Mitre link : CVE-2023-49680

CVE.ORG link : CVE-2023-49680


JSON object : View

Products Affected

No product.

CWE

No CWE.