A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e/role leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 14 Feb 2025 07:00:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e/role leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Sat, 23 Nov 2024 01:45:00 +0000

Type Values Removed Values Added
First Time appeared Anisha
Anisha job Recruitment
CPEs cpe:2.3:a:anisha:job_recruitment:1.0:*:*:*:*:*:*:*
Vendors & Products Anisha
Anisha job Recruitment

Tue, 12 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Code-projects
Code-projects job Recruitment
CPEs cpe:2.3:a:code-projects:job_recruitment:1.0:*:*:*:*:*:*:*
Vendors & Products Code-projects
Code-projects job Recruitment
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 11 Nov 2024 19:45:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Title code-projects Job Recruitment register.php cross site scripting
Weaknesses CWE-79
CWE-94
References
Metrics cvssV2_0

{'score': 4, 'vector': 'AV:N/AC:L/Au:S/C:N/I:P/A:N'}

cvssV3_0

{'score': 3.5, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N'}

cvssV3_1

{'score': 3.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2025-02-14T06:57:23.868Z

Reserved: 2024-11-11T09:51:00.289Z

Link: CVE-2024-11078

cve-icon Vulnrichment

Updated: 2024-11-12T16:00:10.157Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-11T20:15:17.400

Modified: 2025-09-30T14:26:00.933

Link: CVE-2024-11078

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.