Hijackedamygdala

**Name of the Vulnerable Software and Affected Versions** HireFlow version 1.2 **Description** SQL injection occurs because user-supplied input is concatenated directly into SQL queries without parameterization. An unauthenticated attacker can bypass authentication or extract the full contents of the database, including user credentials, via UNION-based injection. The affected endpoints are "/login" and "/search". **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HireFlow version 1.2 **Description** Incorrect Access Control allows authenticated users to perform horizontal privilege escalation. The application fails to enforce object-level authorization on the "/candidate/<id>" and "/interview/<id>" endpoints. Route handlers retrieve records using the user-supplied `id` without verifying if the requester is the owner or possesses an authorized role, potentially leading to a full data breach of all candidate profiles and interview notes. **Recommendations** Implement object-level authorization checks for the "/candidate/<id>" and "/interview/<id>" endpoints to ensure users can only access records they are authorized to view.

**Name of the Vulnerable Software and Affected Versions** HireFlow version 1.2 **Description** Cross Site Scripting (XSS) occurs in candidate detail.html. The issue is triggered via the 'Resume' or 'Feedback Comment' fields through the endpoints "/candidates/add" and "/feedback/add". XSS is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.