Home
Description
mJobtime 15.7.2 handles authorization on the client side, which allows an attacker to modify the client-side code and gain access to administrative features. Additionally, they can craft requests based on the client-side code to call these administrative functions directly.
References
labs.infoguard.ch/...51683_time_management_softare_sqli-rce/
labs.infoguard.ch/...51683_time_management_softare_sqli-rce/
