Zeeways Zeejobsite vulnerabilities
3 known vulnerabilities affecting zeeways/zeejobsite.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-3706P3HIGHCVSS 7.5PoCv2.02008-08-19
CVE-2008-3706 [HIGH] CWE-89 CVE-2008-3706: SQL injection vulnerability in bannerclick.php in ZEEJOBSITE 2.0 allows remote attackers to execute
SQL injection vulnerability in bannerclick.php in ZEEJOBSITE 2.0 allows remote attackers to execute arbitrary SQL commands via the adid parameter.
nvd
CVE-2008-6913P3MEDIUMCVSS 6.5PoCv2.02009-08-07
CVE-2008-6913 [MEDIUM] CWE-20 CVE-2008-6913: Unrestricted file upload vulnerability in editresume_next.php in Zeeways ZEEJOBSITE 2.0 allows remot
Unrestricted file upload vulnerability in editresume_next.php in Zeeways ZEEJOBSITE 2.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile edit action, then accessing the file via a direct request to jobseekers/logos/.
nvd
CVE-2009-4601P4MEDIUMCVSS 4.3PoCv3.02010-01-12
CVE-2009-4601 [MEDIUM] CWE-79 CVE-2009-4601: Cross-site scripting (XSS) vulnerability in basic_search_result.php in Zeeways ZeeJobsite 3x allows
Cross-site scripting (XSS) vulnerability in basic_search_result.php in Zeeways ZeeJobsite 3x allows remote attackers to inject arbitrary web script or HTML via the title parameter.
nvd