CVE-2024-0262 | Online Job Portal 1.0 Create News Page /Admin/News.php cross site scripting

Inserito da Angelo Barbosa | Gen 6, 2024 | CVE

A vulnerability was found in Online Job Portal 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /Admin/News.php of the component Create News Page. The manipulation of the argument News with the input </title><scRipt>alert(0x00C57D)</scRipt> leads to cross site scripting.

This vulnerability is handled as CVE-2024-0262. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0262 | Online Job Portal 1.0 Create News Page /Admin/News.php cross site scripting

Post correlati

CVE-2024-27100 | Discourse up to 3.2.0/3.3.0.beta1 CSV Export resource consumption

CVE-2024-28042 | Subnet Solutions PowerSYSTEM Center reliance on uncontrolled component (icsa-24-135-02)

CVE-2023-7191 | S-CMS up to 2.0_build20220529-20231006 member/reg.php M_login/M_email sql injection

CVE-2024-2024 | Folders Pro Plugin up to 3.0.2 on WordPress handle_folders_file_upload unrestricted upload