CVE-2024-8465

Severity CVSS v4.0:
Pending analysis
Type:
CWE-89 SQL Injection
Publication date:
05/09/2024
Last modified:
06/09/2024

Description

SQL injection vulnerability, by which an attacker could send a specially designed query through user_id parameter in /jobportal/admin/user/controller.php, and retrieve all the information stored in it.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:phpgurukul:job_portal:1.0:*:*:*:*:*:*:*