CVE-2024-13093: code-projects Job Recruitment Seeker Profile _call_main_search_ajax.php sql injection
First published: Thu Jan 02 2025(Updated: )
A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /_parse/_call_main_search_ajax.php of the component Seeker Profile Handler. The manipulation of the argument s1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Code-Projects Job Recruitment | =1.0 | |
| Code-Projects Job Recruitment | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-13093?
CVE-2024-13093 is classified as a critical vulnerability.
What component is affected by CVE-2024-13093?
CVE-2024-13093 affects the Seeker Profile Handler in the Job Recruitment 1.0 application.
How can I fix CVE-2024-13093?
To fix CVE-2024-13093, ensure that your application is updated to a patched version that addresses the SQL injection vulnerability.
What type of vulnerability is CVE-2024-13093?
CVE-2024-13093 is categorized as an SQL injection vulnerability.
What file is involved in CVE-2024-13093?
CVE-2024-13093 involves the file /_parse/_call_main_search_ajax.php.
- agent/title
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/description
- agent/type
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/code-projects
- canonical/code-projects job recruitment
- version/code-projects job recruitment/1.0