CVE-2026-11491 | CodeAstro Human Resource Management System 1.0 Add Notice Page /notice/All_notice Notice Title cross site scripting

Inserito da Angelo Barbosa | Giu 7, 2026 | CVE

A vulnerability classified as problematic was found in CodeAstro Human Resource Management System 1.0. Impacted is an unknown function of the file /notice/All_notice of the component Add Notice Page. Such manipulation of the argument Notice Title leads to cross site scripting.

This vulnerability is referenced as CVE-2026-11491. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-11491 | CodeAstro Human Resource Management System 1.0 Add Notice Page /notice/All_notice Notice Title cross site scripting

Post correlati

CVE-2024-6557 | SchedulePress Plugin up to 5.1.3 on WordPress information disclosure

CVE-2025-65405 | Live555 Streaming Media 2018.09.02 AAC File Parser samplingFrequency use after free

CVE-2026-24735 | Apache Answer up to 1.7.1 API Endpoint private personal information

CVE-2025-13271 | Campcodes School Fees Payment Management System 1.0 /ajax.php?action=login Username sql injection