Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-395x-8q95-8h46

Опубликовано: 12 фев. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.1
CVSS3: 3.5

Описание

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /_parse/load_user-profile.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. Multiple parameters might be affected.

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /_parse/load_user-profile.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. Multiple parameters might be affected.

Ссылки

EPSS

Процентиль: 24%
0.00082
Низкий

5.1 Medium

CVSS4

3.5 Low

CVSS3

CVE ID

CVE-2025-1190

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2025-1190

CVSS3: 3.5
nvd
12 месяцев назад

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /_parse/load_user-profile.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. Multiple parameters might be affected.

fstec логотип

BDU:2025-05212

CVSS3: 6.1
fstec
12 месяцев назад

Уязвимость файла /_parse/load_user-profile.php системы подбора персонала Job Recruitment, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и выполнить произвольный код

EPSS

Процентиль: 24%
0.00082
Низкий

5.1 Medium

CVSS4

3.5 Low

CVSS3

CVE ID

CVE-2025-1190

Дефекты

CWE-79