Vulnerabilities > Kashipara > JOB Portal

DATE CVE VULNERABILITY TITLE RISK
2023-12-22 CVE-2023-49688 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txtUser' parameter of the login.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-22 CVE-2023-49689 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'JobId' parameter of the Employer/DeleteJob.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-21 CVE-2023-49677 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'cmbQual' parameter of the Employer/InsertJob.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-21 CVE-2023-49681 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'cmbQual' parameter of the Employer/InsertWalkin.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8