Readymade Job Site Script has SQL Injection via the location_name array parameter to the /job URI.
References
Link | Resource |
---|---|
https://github.com/d4wner/Vulnerabilities-Report/blob/master/ready-made-job-site-script.md | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-12-24T18:00:00
Updated: 2017-12-24T17:57:01
Reserved: 2017-12-24T00:00:00
Link: CVE-2017-17895
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-12-27T17:08:21.797
Modified: 2018-01-09T16:35:47.707
Link: CVE-2017-17895
JSON object: View
Redhat Information
No data.
CWE