CVE-2024-12980 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php fln_update fname/lname cross site scripting

Inserito da Angelo Barbosa | Dic 26, 2024 | CVE

A vulnerability was found in code-projects Job Recruitment 1.0. It has been classified as problematic. Affected is the function fln_update of the file /_parse/_all_edits.php. The manipulation of the argument fname/lname leads to cross site scripting.

This vulnerability is traded as CVE-2024-12980. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-12980 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php fln_update fname/lname cross site scripting

Post correlati

CVE-2024-36074 | Netwrix CoSoSys Endpoint Protector/CoSoSys Unify EasyLock Privilege Escalation

CVE-2023-45800 | Hanbiro Groupware up to 3.8.81.0 sql injection

CVE-2024-31445 | Cacti up to 1.2.26 api_automation.php automation_get_new_graphs_sql sql injection

CVE-2024-51055 | Hoosk 1.7.1 config.php Privilege Escalation