CVE-2026-38567
CRITICALHireFlow 1.2 - Unauthenticated SQL Injection via Login and Search Endpoints
Title source: llmDescription
HireFlow v1.2 is vulnerable to SQL injection in the /login and /search endpoints. User-supplied input is concatenated directly into SQL queries without parameterization. An unauthenticated attacker can bypass authentication by supplying a crafted username (e.g. admin'--) or extract the full contents of the database including user credentials via UNION-based injection at the /search endpoint.
References (3)
Core 3
Core References
Scores
CVSS v3
9.8
EPSS
0.0050
EPSS Percentile
38.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-89
Status
published
Published
May 11, 2026
Tracked Since
May 11, 2026