CVE-2024-2682 | Campcodes Online Job Finder System 1.0 controller.php EMPLOYEEID cross site scripting

Inserito da Angelo Barbosa | Mar 19, 2024 | CVE

A vulnerability classified as problematic has been found in Campcodes Online Job Finder System 1.0. Affected is an unknown function of the file /admin/employee/controller.php. The manipulation of the argument EMPLOYEEID leads to cross site scripting.

This vulnerability is traded as CVE-2024-2682. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-2682 | Campcodes Online Job Finder System 1.0 controller.php EMPLOYEEID cross site scripting

Post correlati

CVE-2024-3110 | mintplex-labs anything-llm up to 0.x cross site scripting

CVE-2024-24866 | Biteship Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo up to 2.2.24 on WordPress cross site scripting

CVE-2023-49447 | JFinalCMS 5.0.0 /admin/nav/update cross-site request forgery

CVE-2024-40645 | FOGproject FOG prior 1.5.10.41 Banner Image unrestricted upload (GHSA-59mq-q8g5-2f4f)