Complete Online Job Search System 1.0 - SQL Injection (CVE-2022-32007)

Complete Online Job Search System 1.0 contains a SQL injection vulnerability via /eris/admin/company/index.php?view=edit&id=. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site.

完整的在线招聘系统1.0版本存在通过/eris/admin/company/index.php?view=edit&id=.路径的SQL注入漏洞。攻击者可能从数据库中获取敏感信息，修改数据，并在受影响网站的上下文中执行未授权的行政操作。