CVE-2026-12130 | CodeAstro Human Resource Management System 1.0 Projects Management Page /Projects/Add_Projects protitle cross site scripting

Inserito da Angelo Barbosa | Giu 12, 2026 | CVE

A vulnerability was found in CodeAstro Human Resource Management System 1.0. It has been declared as problematic. This affects an unknown part of the file /Projects/Add_Projects of the component Projects Management Page. The manipulation of the argument protitle results in cross site scripting.

This vulnerability is cataloged as CVE-2026-12130. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-12130 | CodeAstro Human Resource Management System 1.0 Projects Management Page /Projects/Add_Projects protitle cross site scripting

Post correlati

CVE-2023-48621 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)

CVE-2024-38472 | Apache HTTP Server up to 2.4.59 on Windows UNC server-side request forgery

CVE-2025-47936 | TYPO3 up to 12.4.30/13.4.11 Webhook server-side request forgery

CVE-2023-50712 | dfir-iris iris-web up to 2.3.6 cross site scripting (GHSA-593r-747g-p92p)