mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
803 B
803 B
CVE-2020-8645
Description
An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is job_id. The function is getJobApplicationsByJobId(). The file is _lib/class.JobApplication.php.
POC
Reference
- https://github.com/niteosoft/simplejobscript/issues/9
- https://github.com/niteosoft/simplejobscript/issues/9
Github
No PoCs found on GitHub currently.