๐ CVE-2022-25228 | CandidATS 3.0.0 Beta /index.php userID/candidateID/jobOrderID/companyID sql injection
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in CandidATS 3.0.0 Beta and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument userID/candidateID/jobOrderID/companyID leads to sql injection. The identification of this vulnerability is CVE-2022-25228. The attack needs to be initiated within the local network. There is no exploit available. ...