CVE-2026-12129 | CodeAstro Human Resource Management System 1.0 Dashboard Interface /dashboard/add_tod todo_data cross site scripting

Inserito da Angelo Barbosa | Giu 12, 2026 | CVE

A vulnerability was found in CodeAstro Human Resource Management System 1.0. It has been classified as problematic. Affected by this issue is some unknown functionality of the file /dashboard/add_tod of the component Dashboard Interface. The manipulation of the argument todo_data leads to cross site scripting.

This vulnerability is listed as CVE-2026-12129. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-12129 | CodeAstro Human Resource Management System 1.0 Dashboard Interface /dashboard/add_tod todo_data cross site scripting

Post correlati

CVE-2024-38868 | Zoho ManageEngine Endpoint Central prior 11.3.2400.15/11.3.2406.08 authorization

CVE-2024-1385 | WP-Stateless Plugin up to 3.4.0 on WordPress Options Update authorization

CVE-2024-54117 | Huawei HarmonyOS 5.0.0 UIExtension Module information disclosure

CVE-2025-59853 | HCL DFXAnalytics information exposure (KB0130569)