CVE-2023-49680

Name of the Vulnerable Software and Affected Versions Job Portal version 1.0

Description The issue concerns an Unauthenticated SQL Injection vulnerability. Specifically, the txtTotal parameter of the "Employer/InsertJob.php" resource does not validate the characters received, and they are sent unfiltered to the database.

Recommendations For Job Portal version 1.0, consider restricting access to the "Employer/InsertJob.php" resource until a patch is available. As a temporary workaround, avoid using the txtTotal parameter in the affected resource to minimize the risk of exploitation.