VYPR

PHP Jobwebsite Pro

by Preprojects

CVEs (3)

  • CVE-2008-5977Jan 27, 2009
    risk 0.03cvss epss 0.00

    SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote attackers to execute arbitrary SQL commands via the adname parameter in a Submit action.

  • CVE-2008-5976Jan 27, 2009
    risk 0.03cvss epss 0.03

    Multiple cross-site scripting (XSS) vulnerabilities in siteadmin/forgot.php in PHP JOBWEBSITE PRO allow remote attackers to inject arbitrary web script or HTML via (1) the adname parameter in a Submit action or (2) the UserName field.

  • CVE-2008-2914Jun 30, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in jobseekers/JobSearch3.php (aka the search module) in PHP JOBWEBSITE PRO allows remote attackers to execute arbitrary SQL commands via the (1) kw or (2) position parameter. NOTE: some of these details are obtained from third party information.