RSS   Vulnerabilities for 'Diesel job site'   RSS

2009-03-13
 
CVE-2008-6467

CWE-89
 

 
SQL injection vulnerability in jobs/jobseekers/job-info.php in Diesel Job Site allows remote attackers to execute arbitrary SQL commands via the job_id parameter.

 
2006-08-26
 
CVE-2006-4361

CWE-Other
 

 
Multiple cross-site scripting (XSS) vulnerabilities in jobseekers/forgot.php in Diesel Job Site allow remote attackers to inject arbitrary web script or HTML via the (1) uname or (2) SEmail parameters.

 
2006-05-23
 
CVE-2006-2540

CWE-Other
 

 
Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail address controlled by the product developers.

 

 >>> Vendor: Dieselscripts 5 Products
Diesel job site
Diesel joke site
Diesel smart traffic
Diesel pay
Diesel paid mail


Copyright 2024, cxsecurity.com

 

Back to Top