vendor:
Pre Job Board
by:
bi0
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Pre Job Board
Affected Version From: 1
Affected Version To: 1
Patch Exists: NO
Related CWE: N/A
CPE: a:preprojects:pre_job_board:1.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
Pre Job Board 1.0 SQL Bypass Vulnerability
An attacker can bypass authentication by using the username and password of '1'or'1'='1' in the admins.php and preview.php pages of the Pre Job Board 1.0 software.
Mitigation:
Input validation should be used to prevent SQL injection attacks.