274 matches found
CVE-2022-48013
Opencats v0.9.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title text fields...
Opencats 跨站脚本漏洞
OpenCats is an open source recruitment process management system. A security vulnerability exists in Opencats version v0.9.7, which stems from its /opencats/index.php?m=settings&a=ajaxtagsupd component that allows an attacker to implement reflective cross-site scripting...
OpenCats SQL注入漏洞
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.7, which stems from the importID parameter of its Import viewerrors function that allows an attacker to implement SQL injection...
OpenCats 跨站脚本漏洞
OpenCats is an open source recruitment process management system. OpenCats v0.9.7 version of a security vulnerability , the vulnerability stems from its /opencats/index.php?m=calendar component of the Description or Title of the text field of the operation allows an attacker to inject a carefully...
CVE-2022-48012
Opencats v0.9.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /opencats/index.php?m=settings&a=ajaxtagsupd...
CVE-2022-48011
Opencats v0.9.7 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function...
CVE-2022-48011
CVE-2022-48011 affects Opencats v0.9.7 with a SQL injection vulnerability via the importID parameter in the Import viewerrors function. The NVD/CVE details list a CVSS 3.1 base score of 9.8 (CRITICAL) with network attack vector, no user interaction, and no privileges required, impacting confident...
CVE-2022-48012
Opencats v0.9.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /opencats/index.php?m=settings&a=ajaxtagsupd...
CVE-2022-48013
Opencats v0.9.7 contains a stored XSS vulnerability in the calendar component ( /opencats/index.php?m=calendar ). The underlying issue allows injecting payloads into the Description or Title fields, enabling execution of arbitrary web scripts or HTML by an attacker who can supply crafted input. C...
CVE-2022-48012
OpenCATS v0.9.7 contains a reflected XSS in the component /opencats/index.php?m=settings&a=ajax_tags_upd. Affected functionality allows an attacker to inject arbitrary JavaScript into a victim’s browser, potentially stealing cookies or hijacking sessions. Impact is described as client-side code e...
OpenCATS Cross-Site Scripting Vulnerability (CNVD-2022-70567)
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats v0.9.6, which stems from a security issue with the email parameter in the Check Email feature. No details of the vulnerability are provided at this time...
OpenCATS Cross-Site Scripting Vulnerability (CNVD-2022-70590)
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which originates from an attacker being able to implement reflective cross-site scripting using its indexFile component. Currently there is no detailed vulnerability detai...
OpenCATS Cross-Site Scripting Vulnerability (CNVD-2022-70588)
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can implement reflective cross-site scripting using its entriesPerPage parameter. No detailed vulnerability details are availabl...
OpenCats SQL Injection Vulnerability (CNVD-2022-70569)
OpenCats is an open source recruitment process management system. OpenCats v0.9.6 suffers from a SQL injection vulnerability that stems from a security issue with the tagid variable in the tag update function. No detailed vulnerability details are provided at this time...
OpenCats SQL Injection Vulnerability
OpenCats is an open source recruitment process management system. OpenCats v0.9.6 suffers from a SQL injection vulnerability that stems from a security issue with the entriesPerPage variable. No details of the vulnerability are provided at this time...
OpenCats SQL Injection Vulnerability (CNVD-2022-70574)
OpenCats is an open source recruitment process management system. OpenCats v0.9.6 suffers from a SQL injection vulnerability that stems from a security issue with the tagid variable in the tag delete function. No detailed vulnerability details are provided at this time...
OpenCATS SQL Injection Vulnerability (CNVD-2022-70575)
OpenCats is an open source recruitment process management system. OpenCats v0.9.6 suffers from a SQL injection vulnerability that stems from a security issue with the importID parameter in the Import viewerrors function. No detailed vulnerability details are available at this time...
OpenCATS Cross-Site Scripting Vulnerability (CNVD-2022-70587)
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can implement reflective cross-site scripting using its joborderID parameter. No detailed vulnerability details are available at...
OpenCATS has an unspecified vulnerability
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats v0.9.6, which stems from a security issue in the ajax function of getDataGridPager. No detailed vulnerability details are available at this time...
OpenCATS Cross-Site Scripting Vulnerability (CNVD-2022-70589)
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can utilize its callback component to implement reflective cross-site scripting. No detailed vulnerability details are available...