Projectworlds Online Job Portal 1.0
Approved changes feed: RSS · Atom
cpe:2.3:a:projectworlds:online_job_portal:1.0:*:*:*:*:*:*:*
part: a version: 1.0 update: *
| Vendor | Projectworlds (1c49ba31-3767-5ff6-9610-c6dcb2aee835) |
|---|---|
| Product | Online Job Portal (2e1fffa4-084d-55ea-96ac-f5b157261832) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-0262 |
vulnerable | 2026-06-03 14:54:02.037673 |
Online Job Portal Create News Page News.php cross site scripting
LOW (2.4)
A vulnerability was found in Online Job Portal 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /Admin/News.php of the component Create News Page. The manipulation of the argument News with the input </title><scRipt>alert(0x00C57D)</scRipt> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-249818 is the identifier assigned to this vulnerability.
Published: 2024-01-07T02:00:05.187Z
Updated: 2025-06-03T14:40:26.660Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46679 |
vulnerable | 2026-06-03 14:53:10.330287 |
Online Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
CRITICAL (9.8)
Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txt_uname_email' parameter of the index.php resource does not validate the characters received and they are sent unfiltered to the database.
Published: 2023-11-07T20:37:20.832Z
Updated: 2024-09-12T19:11:10.443Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46677 |
vulnerable | 2026-06-03 14:53:10.329745 |
Online Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
CRITICAL (9.8)
Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txt_uname' parameter of the sign-up.php resource does not validate the characters received and they are sent unfiltered to the database.
Published: 2023-11-07T20:35:03.334Z
Updated: 2024-09-12T19:12:00.786Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.