CVE-2024-8470

Publication date

2024-09-05 12:56:02

Family

INCIBE

State

PUBLISHED

Description

SQL injection vulnerability, by which an attacker could send a specially designed query through CATEGORY parameter in /jobportal/admin/vacancy/controller.php, and retrieve all the information stored in it.