Caesar666

Name of the Vulnerable Software and Affected Versions: code-projects Job Diary version 1.0 Description: A SQL injection issue exists in code-projects Job Diary 1.0. The vulnerability affects an unknown functionality within the `/user-apply.php` file. Manipulation of the `job title` argument can lead to SQL injection, and the attack can be launched remotely. The exploit has been publicly disclosed and may be used. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: code-projects Job Diary version 1.0 Description: A SQL injection issue exists due to the manipulation of the `ID` argument in the `/admin-inbox.php` file. This allows for remote exploitation. The exploit has been publicly disclosed. Recommendations: As a temporary workaround, restrict access to the `/admin-inbox.php` file until a patch is available.

Name of the Vulnerable Software and Affected Versions: Job Diary version 1.0 Description: A SQL injection issue exists due to the manipulation of the `ID` argument. This affects unknown code within the `/edit-details.php` file. The attack can be initiated remotely. The exploit has been disclosed publicly. Recommendations: As a temporary workaround, consider restricting access to the `/edit-details.php` file until a fix is available. Sanitize the `ID` argument before using it in any database queries.